Category "windows-kernel"

Trouble passing a C# string from userland to kernelmode C and using it to find specific LDR_DATA_TABLE_ENTRY

I am having difficulty comparing a string passed from usermode type LPWSTR to a LDR table entry type UNICODE_STRING Kernel C: struct { int pid; int user

How to filter read calls using minifilter driver?

I'm completely new to minifilter drivers. In fact new to windows development as such. I want to create a minifilter driver, attach it to one of my local disk( s

Other Categories