摘要:
https://blog.csdn.net/liny000/article/details/81260385 阅读全文
posted @ 2021-08-05 20:48
磐正
阅读(197)
评论(0)
推荐(0)
摘要:
#include <wdm.h> NTSTATUS DriverUnload(PDRIVER_OBJECT driver) { UNREFERENCED_PARAMETER(driver); DbgPrint("Unload driver"); return STATUS_SUCCESS; } NT 阅读全文
posted @ 2021-08-05 20:46
磐正
阅读(41)
评论(0)
推荐(0)
摘要:
// driver.c #include <ntddk.h> void DriverUnload(PDRIVER_OBJECT pDriverObject); NTSTATUS DriverEntry(PDRIVER_OBJECT pDriverObject, PUNICODE_STRING pRe 阅读全文
posted @ 2021-08-05 20:42
磐正
阅读(38)
评论(0)
推荐(0)
摘要:
//测试代码: #include <ntddk.h> VOID DriverUnload(PDRIVER_OBJECT driver) { DbgPrint(("Uninstall Driver Sucess!")); } NTSTATUS DriverEntry(PDRIVER_OBJECT dr 阅读全文
posted @ 2021-08-05 20:34
磐正
阅读(25)
评论(0)
推荐(0)
摘要:
[File] => [Symbol File Path] 1.初始值:srv* 2.修改为:SRV*c:\mysymbol* http://msdl.microsoft.com/download/symbols 未成功 https://blog.csdn.net/lxc1014/article/de 阅读全文
posted @ 2021-08-05 20:32
磐正
阅读(875)
评论(0)
推荐(0)
摘要:
#include <ntddk.h> #include <wdf.h> VOID EvtDriverUnload(IN WDFDRIVER driver) { KdPrint(("驱动卸载\n")); } NTSTATUS DriverEntry(IN PDRIVER_OBJECT driver_o 阅读全文
posted @ 2021-08-05 20:23
磐正
阅读(118)
评论(0)
推荐(0)
摘要:
使用DebugView打印内核调试信息是开发驱动的非常重要的手段,但DebugView在VISTA/WINDOWS 7下却无法获取内核的调试日志,修改方法是: HKLM/SYSTEM/CurrentControlSet/Control/Session Manager,打开或者创建子项Debug Pr 阅读全文
posted @ 2021-08-05 20:20
磐正
阅读(315)
评论(0)
推荐(0)
浙公网安备 33010602011771号