如何在我的驱动程序代码的DriverEntry例程中使用NtCreateProcess? [英] How to Use NtCreateProcess in DriverEntry Routine In My Driver Code ?

问题描述

大家好，我想在驱动程序编程中使用NtCreateProcess，但无法在任何头文件中找到此函数，您能帮助我如何找到此函数的头文件和库并在我的代码中使用它吗?请，请帮助我，谢谢，

hi all , i want to use NtCreateProcess in my driver programming , but can not find this function in any header file , can you help me to how i can find this function header and library and use it in my code ? please please please help me , thanks ,

推荐答案

did you try this?

<pre><pre><pre lang="c++">
HANDLE fileHandle, sectionHandle, processHandle;

fileHandle = CreateFile(L"C:\\Windows\\notepad.exe", ...);
NtCreateSection(&sectionHandle, SECTION_ALL_ACCESS, ...);
NtCreateProcess(&processHandle, PROCESS_ALL_ACCESS, NULL, GetCurrentProcess(), FALSE, sectionHandle, NULL, NULL);
</pre></pre></pre>

这篇关于如何在我的驱动程序代码的DriverEntry例程中使用NtCreateProcess?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！