易采下载站下载易语言系统驱动服务源码—源码之家-易采下载站

下载排行|最近更新

软件
软件
文章
当前位置:首页易语言源码系统工具 → 易语言系统驱动服务源码
易语言系统驱动服务源码

易语言系统驱动服务源码

下载地址
  • 软件大小:36.17 KB
  • 软件语言:简体中文
  • 更新时间:2021-04-18
  • 软件类别:国产源码
  • 软件性质:自由软件
  • 运行环境:Winall,Win2003,WinXP,Win7,Win8
  • 软件等级:
  • 官方网址:homepage
  • 演示地址:demo

本地下载

软件大小:36.17 KB

高速下载

需优先下载高速下载器

点赞 差评

  • 软件介绍
  • 软件截图
  • 猜你喜欢
  • 同类推荐
  • 相关文章
  • 下载地址

软件Tags:

易语言系统驱动服务源码

易语言系统驱动服务源码系统结构:DriverEntry,DispatchDeviceControl,DriverUnload,DispatchCreate,DispatchClose,OnLoad,GetSSDTTableAddress,OnHook,UnHook,IsProtect,New_NtUserFindWindowEx,New_NtUserGetForegroundWindow,New_NtUserQueryWindow,New_NtUserWindowFromPoint,New_NtUserBuildHwndList,New_NtUserSetWindowLong,IoGetCurrentIrpStackLocation,指针到整数_,写内存整数_,子程序指针到整数型_,UserAddress,GetFunctionAddress,GetWindowsVersion,VAR_OSVERSIONINFOEX,RtlGetVersion,MmCreateMDL,MmMapMDL,MmUnMapMDL,GetShadowFunction,SetShadowFunction,GetShadowBase,GetShadowCount,pNtUserFindWindowEx,pNtUserGetForegroundWindow,pNtUserQueryWindow,pNtUserWindowFromPoint,pNtUserBuildHwndList,pNtUserSetWindowLong,DbgPrint,DbgPrintInt,IoCreateDevice,IoCreateSymbolicLink,RtlAnsiStringToUnicodeString,RtlInitAnsiString,RtlFreeUnicodeString,IoIsWdmVersionAvailable,IoDeleteDevice,IoDeleteSymbolicLink,IoCompleteRequest,PsLookupProcessByProcessId,KeStackAttachProcess,ZwOpenProcess,ZwCreateJobObject,ZwAssignProcessToJobObject,ZwTerminateJobObject,KeUnstackDetachProcess,ZwAllocateVirtualMemory,ZwClose,MmUnsecureVirtualMemory,ZwQueryVirtualMemory,InterlockedExchange,MmGetSystemRoutineAddress,ZwQuerySystemInformation,memcpy,PsGetVersion,MmCreateMdl,MmBuildMdlForNonPagedPool,MmMapLockedPages,MmUnmapLockedPages,IoFreeMdl,MmIsAddressValid,PsGetCurrentProcessId, ======DriverMain || ||------_启动子程序 || ||------DriverEntry || ||------DispatchDeviceControl || ||------DriverUnload || ||------DispatchCreate || ||------DispatchClose || ||------OnLoad || ||------GetSSDTTableAddress || ||------OnHook || ||------UnHook || ||------IsProtect || ||------New_NtUserFindWindowEx || ||------New_NtUserGetForegroundWindow || ||------New_NtUserQueryWindow || ||------New_NtUserWindowFromPoint || ||------New_NtUserBuildHwndList || ||------New_NtUserSetWindowLong || || ======DriverHelper || ||------IoGetCurrentIrpStackLocation || ||------指针到整数_ || ||------写内存整数_ || ||------子程序指针到整数型_ || ||------UserAddress || ||------GetFunctionAddress || ||------GetWindowsVersion || ||------VAR_OSVERSIONINFOEX || ||------RtlGetVersion || ||------MmCreateMDL || ||------MmMapMDL || ||------MmUnMapMDL || ||------GetShadowFunction || ||------SetShadowFunction || ||------GetShadowBase || ||------GetShadowCount || || ======DriverFunDef || ||------pNtUserFindWindowEx || ||------pNtUserGetForegroundWindow || ||------pNtUserQueryWindow || ||------pNtUserWindowFromPoint || ||------pNtUserBuildHwndList || ||------pNtUserSetWindowLong || || ======调用的Dll || ||---[dll]------DbgPrint || ||---[dll]------DbgPrintInt || ||---[dll]------_Write_Int || ||---[dll]------_Read_Int || ||---[dll]------_Read_Allocate || ||---[dll]------_Write_DRIVER_OBJECT || ||---[dll]------_Read_DRIVER_OBJECT || ||---[dll]------_Write_IRP || ||---[dll]------_Read_IRP || ||---[dll]------IoCreateDevice || ||---[dll]------IoCreateSymbolicLink || ||---[dll]------RtlAnsiStringToUnicodeString || ||---[dll]------RtlInitAnsiString || ||---[dll]------RtlFreeUnicodeString || ||---[dll]------IoIsWdmVersionAvailable || ||---[dll]------IoDeleteDevice || ||---[dll]------IoDeleteSymbolicLink || ||---[dll]------IoCompleteRequest || ||---[dll]------PsLookupProcessByProcessId || ||---[dll]------KeStackAttachProcess || ||---[dll]------ZwOpenProcess || ||---[dll]------ZwCreateJobObject || ||---[dll]------ZwAssignProcessToJobObject || ||---[dll]------ZwTerminateJobObject || ||---[dll]------KeUnstackDetachProcess || ||---[dll]------ZwAllocateVirtualMemory || ||---[dll]------ZwClose || ||---[dll]------MmUnsecureVirtualMemory || ||---[dll]------ZwQueryVirtualMemory || ||---[dll]------InterlockedExchange || ||---[dll]------MmGetSystemRoutineAddress || ||---[dll]------ZwQuerySystemInformation || ||---[dll]------memcpy || ||---[dll]------_Read_Input || ||---[dll]------_Write_Output || ||---[dll]------_Read_IO_STACK_LOCATION || ||---[dll]------PsGetVersion || ||---[dll]------MmCreateMdl || ||---[dll]------MmBuildMdlForNonPagedPool || ||---[dll]------MmMapLockedPages || ||---[dll]------MmUnmapLockedPages || ||---[dll]------IoFreeMdl || ||---[dll]------MmIsAddressValid || ||---[dll]------PsGetCurrentProcessId 调用的DLL命令: .DLL命令DbgPrint,,"ntoskrnl.lib","@_DbgPrint" .参数Buffer,文本型 .DLL命令DbgPrintInt,,"ntoskrnl.lib","@_DbgPrint" .参数Format,文本型 .参数Value,整数型 .DLL命令_Write_Int,,"ntoskrnl.lib","@_memcpy" .参数目的地址,整数型 .参数源变量,整数型,传址 .参数大小,整数型 .DLL命令_Read_Int,,"ntoskrnl.lib","@_memcpy" .参数目的变量,整数型,传址 .参数源地址,整数型 .参数大小,整数型 .DLL命令_Read_Allocate,,"ntoskrnl.lib","_Read_Int" .参数目的变量,ALLOCATE_,传址 .参数源地址,整数型 .参数大小,整数型 .DLL命令_Write_DRIVER_OBJECT,,"ntoskrnl.lib","@_memcpy" .参数目的地址,整数型 .参数源变量,DRIVER_OBJECT,传址 .参数大小,整数型 .DLL命令_Read_DRIVER_OBJECT,,"ntoskrnl.lib","@_memcpy" .参数目的变量,DRIVER_OBJECT,传址 .参数源地址,整数型 .参数大小,整数型 .DLL命令_Write_IRP,,"ntoskrnl.lib","@_memcpy" .参数目的地址,整数型 .参数源变量,IRP,传址 .参数大小,整数型 .DLL命令_Read_IRP,,"ntoskrnl.lib","@_memcpy" .参数目的变量,IRP,传址 .参数源地址,整数型 .参数大小,整数型 .DLL命令IoCreateDevice,整数型,"ntoskrnl.lib","_IoCreateDevice@28",,. .参数DriverObject,整数型 .参数DeviceExtensionSize,整数型 .参数DeviceName,UNICODE_STRING,传址 .参数DeviceType,整数型 .参数DeviceCharacteristics,整数型 .参数Exclusive,逻辑型 .参数DeviceObject,整数型,传址 .DLL命令IoCreateSymbolicLink,整数型,"ntoskrnl.lib","_IoCreateSymbolicLink@8" .参数SymbolicLinkName,UNICODE_STRING,传址 .参数DeviceName,UNICODE_STRING,传址 .DLL命令RtlAnsiStringToUnicodeString,整数型,"ntoskrnl.lib","_RtlAnsiStringToUnicodeString@12" .参数DestinationString,UNICODE_STRING,传址 .参数SourceString,ANSI_STRING,传址 .参数AllocateDestinationString,逻辑型 .DLL命令RtlInitAnsiString,,"ntoskrnl.lib","_RtlInitAnsiString@8" .参数DestinationString,ANSI_STRING,传址 .参数SourceString,文本型,传址 .DLL命令RtlFreeUnicodeString,,"ntoskrnl.lib","_RtlFreeUnicodeString@4" .参数UnicodeString,UNICODE_STRING,传址 .DLL命令IoIsWdmVersionAvailable,逻辑型,"ntoskrnl.lib","_IoIsWdmVersionAvailable@8" .参数MajorVersion,字节型 .参数MinorVersion,字节型 .DLL命令IoDeleteDevice,,"ntoskrnl.lib","_IoDeleteDevice@4" .参数DeviceObject,整数型 .DLL命令IoDeleteSymbolicLink,,"ntoskrnl.lib","_IoDeleteSymbolicLink@4" .参数SymbolicLinkName,UNICODE_STRING,传址 .DLL命令IoCompleteRequest,,"ntoskrnl.lib","_IoCompleteRequest@8" .参数Irp,整数型 .参数PriorityBoost,整数型 .DLL命令PsLookupProcessByProcessId,整数型,"ntoskrnl.lib","_PsLookupProcessByProcessId@8" .参数ProcessID,整数型 .参数EProcess,整数型,传址 .DLL命令KeStackAttachProcess,,"ntoskrnl.lib","_KeStackAttachProcess@8" .参数EProcess,整数型 .参数ApcState,APC_STATE,传址 .DLL命令ZwOpenProcess,整数型,"ntoskrnl.lib","_ZwOpenProcess@16" .参数hProcess,整数型,传址 .参数DesiredAccess,整数型 .参数ObjectAttributes,OBJECT_ATTRIBUTES .参数ClientId,CLIENT_ID .DLL命令ZwCreateJobObject,整数型,"ntoskrnl.lib","_ZwCreateJobObject@12" .参数JobHandle,整数型,传址,4 .参数DesiredAccess,整数型,,4 .参数ObjectAttributes,OBJECT_ATTRIBUTES,,4 .DLL命令ZwAssignProcessToJobObject,整数型,"ntoskrnl.lib","_ZwAssignProcessToJobObject@8" .参数JobHandle,整数型 .参数ProcessHandle,整数型 .DLL命令ZwTerminateJobObject,整数型,"ntoskrnl.lib","_ZwTerminateJobObject@8" .参数JobHandle,整数型 .参数ExitStatus,整数型 .DLL命令KeUnstackDetachProcess,,"ntoskrnl.lib","_KeUnstackDetachProcess@4" .参数ApcState,APC_STATE .DLL命令ZwAllocateVirtualMemory,整数型,"ntoskrnl.lib","_ZwAllocateVirtualMemory@24" .参数ProcessHandle,整数型 .参数BaseAddress,整数型 .参数ZeroBits,整数型 .参数RegionSize,整数型 .参数AllocationType,整数型 .参数Protect,整数型 .DLL命令ZwClose,整数型,"ntoskrnl.lib","_ZwClose@4" .参数ObjectHandle,整数型 .DLL命令MmUnsecureVirtualMemory,整数型,"ntoskrnl.lib","_MmUnsecureVirtualMemory@4" .参数Address,整数型 .参数Size,整数型 .参数ProbeMode,整数型 .DLL命令ZwQueryVirtualMemory,整数型,"ntoskrnl.lib","_ZwQueryVirtualMemory@24" .参数ProcessHandle,整数型 .参数BaseAddress,整数型 .参数MemoryInformationClass,MEMORY_INFORMATION_CLASS .参数MemoryInformation,整数型 .参数MemoryInformationLength,整数型 .参数ReturnLength,整数型,传址 .DLL命令InterlockedExchange,整数型,"ntoskrnl.lib","_@InterlockedExchange@8" .参数volatile,长整数型,传址 .参数Value,长整数型,,Value .DLL命令MmGetSystemRoutineAddress,整数型,"ntoskrnl.lib","_MmGetSystemRoutineAddress@4" .参数SystemRoutineName,UNICODE_STRING .DLL命令ZwQuerySystemInformation,整数型,"ntoskrnl.lib","_ZwQuerySystemInformation@16" .参数CLASS,整数型 .参数INFORMATION,整数型 .参数INFORMATIONLENGTH,整数型 .参数RET,整数型,传址 .DLL命令memcpy,,"ntoskrnl.lib","@_memcpy" .参数目的变量,整数型 .参数源地址,整数型 .参数大小,整数型 .DLL命令_Read_Input,,"ntoskrnl.lib","@_memcpy" .参数目的变量,Protect,传址 .参数源地址,整数型 .参数大小,整数型 .DLL命令_Write_Output,,"ntoskrnl.lib","@_memcpy" .参数目的变量,整数型 .参数源地址,Protect,传址 .参数大小,整数型 .DLL命令_Read_IO_STACK_LOCATION,,"ntoskrnl.lib","@_memcpy" .参数dest,IO_STACK_LOCATION .参数src,整数型 .参数length,整数型 .DLL命令PsGetVersion,整数型,"ntoskrnl.lib","_PsGetVersion@16" .参数MajorVersion,整数型,传址 .参数MinorVersion,整数型,传址 .参数BuildNumber,整数型,传址 .参数CSDVersion,UNICODE_STRING,传址 .DLL命令MmCreateMdl,整数型,"ntoskrnl.lib","_MmCreateMdl@12" .参数MemoryDescriptorList,整数型 .参数Base,整数型 .参数Size,整数型 .DLL命令MmBuildMdlForNonPagedPool,整数型,"ntoskrnl.lib","_MmBuildMdlForNonPagedPool@4" .参数MemoryDescriptorList,整数型 .DLL命令MmMapLockedPages,整数型,"ntoskrnl.lib","_MmMapLockedPages@8",,返回Mapped .参数MemoryDescriptorList,整数型 .参数AccessMode,整数型 .DLL命令MmUnmapLockedPages,整数型,"ntoskrnl.lib","_MmUnmapLockedPages@8" .参数Mapped,整数型 .参数MemoryDescriptorList,整数型 .DLL命令IoFreeMdl,整数型,"ntoskrnl.lib","_IoFreeMdl@4" .参数MemoryDescriptorList,整数型 .DLL命令MmIsAddressValid,整数型,"ntoskrnl.lib","_MmIsAddressValid@4" .参数Address,整数型 .DLL命令PsGetCurrentProcessId,整数型,"ntoskrnl.lib","_PsGetCurrentProcessId@0"

展开内容

下载地址

易语言系统驱动服务源码

同类推荐

推荐文章

本类排行

  • 周排行
  • 月排行

热门软件

iWebMall多用户商城系统 v1.3电子商务 全民影院 官方版影音娱乐 若依后台管理系统 v2.1CMS建站 Gitea源码包其他源码 Shopro商城 前端电子商务 Hbase分布式Hadoop数据库 最新版其它源码 kyphp PHP开发框架 v3.0开发框架 CodeIgniter v3.1.0开发框架 文章付费阅读系统新闻文章

热门标签

LimeSurvey 开源问卷调查 v5 正式版 LimeSurvey 在线问卷管理系统 v3 免费版 PaddlePaddle深度学习平台 正式版 qBittorrent 最新版 Spring Framework 正式版 Hyperf协程框架v2 最新版 Hyperf协程框架v3 最新版 imi协程开发框架 官方版 iSulad容器解决方案 正式版 JeeSite快速开发平台 免费版 魔众企业官网系统 官方版 JeeSite Spring Cloud 官方版 SOFARPC框架 官方版 DBCompare数据库表结构对比工具 最新版 MindSpore深度学习框架 最新版

友情链接关于我们下载帮助(?)联系我们投诉举报

CopyRight © 2010-2023 易采下载 Easck.com , All Rights Reserved 版权所有 蒙ICP备14002389号

声明: 本站所有软件和文章来自互联网 如有异议 请与本站联系

声明: