Re: Image Name from Process Handle in Kernel mode

Tech-Archive recommends: Speed Up your PC by fixing your registry

From: qfel (RemIt.q_tmp_at_aster.pl)
Date: 12/02/04

• Next message: Jean: "Sharing a driver handle from dll ?"
• Previous message: pawan: "Re: Non contiguous Virtual Memory"
• In reply to: KernelSanders: "Image Name from Process Handle in Kernel mode"
• Next in thread: Chuck Chopp: "Re: Image Name from Process Handle in Kernel mode"
• Reply: Chuck Chopp: "Re: Image Name from Process Handle in Kernel mode"
• Messages sorted by: [ date ] [ thread ]

---

Date: Thu, 2 Dec 2004 14:20:01 +0100

Look at http://undocumented.ntinternals.net/
Most of those Nt* functions are avalible in kernel mode (you just have to
change preffix from 'Nt' to 'Zw')

---

• Next message: Jean: "Sharing a driver handle from dll ?"
• Previous message: pawan: "Re: Non contiguous Virtual Memory"
• In reply to: KernelSanders: "Image Name from Process Handle in Kernel mode"
• Next in thread: Chuck Chopp: "Re: Image Name from Process Handle in Kernel mode"
• Reply: Chuck Chopp: "Re: Image Name from Process Handle in Kernel mode"
• Messages sorted by: [ date ] [ thread ]

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Development  > microsoft.public.win32.programmer.kernel  > 2004-12