#include <kph.h>
#include <dyndata.h>
Go to the source code of this file.
| __drv_dispatchType |
( |
IRP_MJ_CREATE |
| ) |
|
| VOID DriverUnload |
( |
__in PDRIVER_OBJECT |
DriverObject | ) |
|
| NTSTATUS KphDispatchCreate |
( |
__in PDEVICE_OBJECT |
DeviceObject, |
|
|
__in PIRP |
Irp |
|
) |
| |
Enumerates the modules loaded by the kernel.
- Parameters
-
| Modules | A variable which receives a pointer to a structure containing information about the kernel modules. The structure must be freed with the tag 'ThpK'. |
Definition at line 317 of file main.c.
Reads the driver parameters.
- Parameters
-
| RegistryPath | The registry path of the driver. |
Definition at line 217 of file main.c.
| ULONG KphpReadIntegerParameter |
( |
__in_opt HANDLE |
KeyHandle, |
|
|
__in PUNICODE_STRING |
ValueName, |
|
|
__in ULONG |
DefaultValue |
|
) |
| |
Reads an integer (REG_DWORD) parameter from the registry.
- Parameters
-
| KeyHandle | A handle to the Parameters key. If NULL, the function fails immediately and returns DefaultValue. |
| ValueName | The name of the parameter. |
| DefaultValue | The value that is returned if the function fails to retrieve the parameter from the registry. |
- Returns
- The parameter value, or DefaultValue if the function failed.
Definition at line 173 of file main.c.
| NTSTATUS KphValidateAddressForSystemModules |
( |
__in PVOID |
Address, |
|
|
__in SIZE_T |
Length |
|
) |
| |
Checks if an address range lies within a kernel module.
- Parameters
-
| Address | The beginning of the address range. |
| Length | The number of bytes in the address range. |
Definition at line 370 of file main.c.
| NTSTATUS KpiGetFeatures |
( |
__out PULONG |
Features, |
|
|
__in KPROCESSOR_MODE |
AccessMode |
|
) |
| |
| DRIVER_INITIALIZE DriverEntry |
| DRIVER_UNLOAD DriverUnload |
1.8.2