收藏

文件名称:CreateProcessNotify

  • 所属分类:
  • 系统编程
  • 资源属性:
  • [Windows] [Visual C] [源码]
  • 上传时间:
  • 2014-07-09
  • 文件大小:
  • 34kb
  • 下载次数:
  • 0次
  • 提 供 者:
  • sir****
  • 相关连接:
  • 下载说明:
  • 别用迅雷下载,失败请重下,重下不扣分!
修正介绍说明

介绍说明--下载内容均来自于网络,请自行研究使用

NT/2K provides a set of APIs, known as "Process Structure Routines" [2] exported by NTOSKRNL. One of these APIs PsSetCreateProcessNotifyRoutine() offers the ability to register system-wide callback function which is called by OS each time when a new process starts, exits or is terminated. The mentioned API can be employed as an easy to implement method for tracking down processes simply by implementing a NT kernel-mode driver and a user mode Win32 control application. The role of the driver is to detect process execution and notifiy the control program about these events.
(系统自动生成,下载前可以参看下载内容)

下载文件列表





CreateProcessNotify

...................\Code

...................\....\ConsCtl

...................\....\.......\ApplicationScope.cpp

...................\....\.......\ApplicationScope.h

...................\....\.......\CallbackHandler.cpp

...................\....\.......\CallbackHandler.h

...................\....\.......\Common.h

...................\....\.......\ConsCtl.cpp

...................\....\.......\ConsCtl.dsp

...................\....\.......\CustomThread.cpp

...................\....\.......\CustomThread.h

...................\....\.......\LockMgr.cpp

...................\....\.......\LockMgr.h

...................\....\.......\NtDriverController.cpp

...................\....\.......\NtDriverController.h

...................\....\.......\QueueContainer.cpp

...................\....\.......\QueueContainer.h

...................\....\.......\QueuedItem.h

...................\....\.......\RetrievalThread.cpp

...................\....\.......\RetrievalThread.h

...................\....\.......\ThreadMonitor.cpp

...................\....\.......\ThreadMonitor.h

...................\....\.......\WinUtils.h

...................\....\ProcMon.dsw

...................\....\ProcObsrv

...................\....\.........\ProcObsrv.c

...................\....\.........\ProcObsrv.dsp

...................\Output

...................\......\ProcObsrv.sys

相关说明

  • 本站资源为会员上传分享交流与学习,如有侵犯您的权益,请联系我们删除.
  • 本站是交换下载平台,提供交流渠道,下载内容来自于网络,除下载问题外,其它问题请自行百度更多...
  • 请直接用浏览器下载本站内容,不要使用迅雷之类的下载软件,用WinRAR最新版进行解压.
  • 如果您发现内容无法下载,请稍后再次尝试;或者到消费记录里找到下载记录反馈给我们.
  • 下载后发现下载的内容跟说明不相乎,请到消费记录里找到下载记录反馈给我们,经确认后退回积分.
  • 如下载前有疑问,可以通过点击"提供者"的名字,查看对方的联系方式,联系对方咨询.
查看所有评论

相关评论

暂无评论内容.

发表评论

*主  题:
*内  容:
*验 证 码:

源码中国 www.ymcn.org