blob: 260a05e345e9b3196e930b7cf9d5239281d7313d (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
|
/*
* Copyright (c) 2004 Security Architects Corporation. All rights reserved.
*
* Module Name:
*
* vdm.h
*
* Abstract:
*
* This module implements various VDM (Virtual Dos Machine) hooking routines.
*
* Author:
*
* Eugene Tsyrklevich 06-Apr-2004
*
* Revision History:
*
* None.
*/
#ifndef __VDM_H__
#define __VDM_H__
/*
* ZwSetLdtEntries sets Local Descriptor Table (LDT) entries for a Virtual DOS Machine (VDM). [NAR]
*/
typedef NTSTATUS (*fpZwSetLdtEntries) (
IN ULONG Selector0,
IN ULONG Entry0Low,
IN ULONG Entry0Hi,
IN ULONG Selector1,
IN ULONG Entry1Low,
IN ULONG Entry1Hi
);
NTSTATUS
NTAPI
HookedNtSetLdtEntries(
IN ULONG Selector0,
IN ULONG Entry0Low,
IN ULONG Entry0Hi,
IN ULONG Selector1,
IN ULONG Entry1Low,
IN ULONG Entry1Hi
);
/*
* ZwVdmControl performs a control operation on a VDM. [NAR]
*/
typedef NTSTATUS (*fpZwVdmControl) (
IN ULONG ControlCode,
IN PVOID ControlData
);
NTSTATUS
NTAPI
HookedNtVdmControl(
IN ULONG ControlCode,
IN PVOID ControlData
);
BOOLEAN InitVdmHooks();
#endif /* __VDM_H__ */
|
