aljaz/shadow-rs
1
1
Fork 0
mirror of https://github.com/joaoviictorti/shadow-rs.git synced 2026-01-05 00:24:41 +01:00
Code Issues Packages Projects Releases Wiki Activity

Adding the type ZwCreateThreadEx

Browse Source
This commit is contained in:
João
2024-07-26 19:46:32 -03:00
parent 5131b84b7e
commit abe4c4f1ef
1 changed files with 19 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
driver/src/includes/mod.rs
View File

@@ -2,11 +2,12 @@
#![allow(dead_code)]
use {
bitfield::bitfield,
bitfield::bitfield,
ntapi::ntpsapi::PPS_ATTRIBUTE_LIST,
wdk_sys::{
ACCESS_MASK, KPROCESSOR_MODE, NTSTATUS, PACCESS_STATE, PCUNICODE_STRING,
PEPROCESS, POBJECT_TYPE, PPEB, PSIZE_T, PUNICODE_STRING,
PVOID, SIZE_T, _DRIVER_OBJECT, KIRQL, PKIRQL
ACCESS_MASK, KIRQL, KPROCESSOR_MODE, NTSTATUS, PACCESS_STATE, PCUNICODE_STRING,
PEPROCESS, PKIRQL, POBJECT_ATTRIBUTES, POBJECT_TYPE, PPEB, PSIZE_T, PUNICODE_STRING,
PVOID, SIZE_T, _DRIVER_OBJECT, HANDLE, PHANDLE
},
winapi::ctypes::c_void
};
@@ -31,6 +32,20 @@ pub type DRIVER_INITIALIZE = core::option::Option<
) -> NTSTATUS,
>;
pub type ZwCreateThreadExType = unsafe extern "system" fn (
ThreadHandle: PHANDLE,
DesiredAccess: ACCESS_MASK,
ObjectAttributes: POBJECT_ATTRIBUTES,
ProcessHandle: HANDLE,
StartRoutine: PVOID,
Argument: PVOID,
CreateFlags: SIZE_T,
ZeroBits: usize,
StackSize: usize,
MaximumStackSize: usize,
AttributeList: PPS_ATTRIBUTE_LIST
) -> NTSTATUS;
#[repr(C)]
#[derive(Debug, Clone, Copy)]
pub struct SystemModule {