mirror of
https://github.com/vxunderground/MalwareSourceCode.git
synced 2024-12-23 11:55:26 +00:00
119 lines
2.5 KiB
C
119 lines
2.5 KiB
C
/*
|
|
* This file is part of the Process Hacker project - https://processhacker.sourceforge.io/
|
|
*
|
|
* You can redistribute this file and/or modify it under the terms of the
|
|
* Attribution 4.0 International (CC BY 4.0) license.
|
|
*
|
|
* You must give appropriate credit, provide a link to the license, and
|
|
* indicate if changes were made. You may do so in any reasonable manner, but
|
|
* not in any way that suggests the licensor endorses you or your use.
|
|
*/
|
|
|
|
#ifndef _PHNT_H
|
|
#define _PHNT_H
|
|
|
|
// This header file provides access to NT APIs.
|
|
|
|
// Definitions are annotated to indicate their source. If a definition is not annotated, it has been
|
|
// retrieved from an official Microsoft source (NT headers, DDK headers, winnt.h).
|
|
|
|
// * "winbase" indicates that a definition has been reconstructed from a Win32-ized NT definition in
|
|
// winbase.h.
|
|
// * "rev" indicates that a definition has been reverse-engineered.
|
|
// * "dbg" indicates that a definition has been obtained from a debug message or assertion in a
|
|
// checked build of the kernel or file.
|
|
|
|
// Reliability:
|
|
// 1. No annotation.
|
|
// 2. dbg.
|
|
// 3. symbols, private. Types may be incorrect.
|
|
// 4. winbase. Names and types may be incorrect.
|
|
// 5. rev.
|
|
|
|
// Mode
|
|
#define PHNT_MODE_KERNEL 0
|
|
#define PHNT_MODE_USER 1
|
|
|
|
// Version
|
|
#define PHNT_WIN2K 50
|
|
#define PHNT_WINXP 51
|
|
#define PHNT_WS03 52
|
|
#define PHNT_VISTA 60
|
|
#define PHNT_WIN7 61
|
|
#define PHNT_WIN8 62
|
|
#define PHNT_WINBLUE 63
|
|
#define PHNT_THRESHOLD 100
|
|
#define PHNT_THRESHOLD2 101
|
|
#define PHNT_REDSTONE 102
|
|
#define PHNT_REDSTONE2 103
|
|
#define PHNT_REDSTONE3 104
|
|
#define PHNT_REDSTONE4 105
|
|
#define PHNT_REDSTONE5 106
|
|
#define PHNT_19H1 107
|
|
#define PHNT_19H2 108
|
|
|
|
#ifndef PHNT_MODE
|
|
#define PHNT_MODE PHNT_MODE_USER
|
|
#endif
|
|
|
|
#ifndef PHNT_VERSION
|
|
#define PHNT_VERSION PHNT_WIN7
|
|
#endif
|
|
|
|
// Options
|
|
|
|
//#define PHNT_NO_INLINE_INIT_STRING
|
|
|
|
#ifdef __cplusplus
|
|
extern "C" {
|
|
#endif
|
|
|
|
#if (PHNT_MODE != PHNT_MODE_KERNEL)
|
|
#include <phnt_ntdef.h>
|
|
#include <ntnls.h>
|
|
#include <ntkeapi.h>
|
|
#endif
|
|
|
|
#include <ntldr.h>
|
|
#include <ntexapi.h>
|
|
|
|
#include <ntmmapi.h>
|
|
#include <ntobapi.h>
|
|
#include <ntpsapi.h>
|
|
|
|
#if (PHNT_MODE != PHNT_MODE_KERNEL)
|
|
#include <cfg.h>
|
|
#include <ntdbg.h>
|
|
#include <ntioapi.h>
|
|
#include <ntlpcapi.h>
|
|
#include <ntpfapi.h>
|
|
#include <ntpnpapi.h>
|
|
#include <ntpoapi.h>
|
|
#include <ntregapi.h>
|
|
#include <ntrtl.h>
|
|
#endif
|
|
|
|
#if (PHNT_MODE != PHNT_MODE_KERNEL)
|
|
|
|
#include <ntseapi.h>
|
|
#include <nttmapi.h>
|
|
#include <nttp.h>
|
|
#include <ntxcapi.h>
|
|
|
|
#include <ntwow64.h>
|
|
|
|
#include <ntlsa.h>
|
|
#include <ntsam.h>
|
|
|
|
#include <ntmisc.h>
|
|
|
|
#include <ntzwapi.h>
|
|
|
|
#endif
|
|
|
|
#ifdef __cplusplus
|
|
}
|
|
#endif
|
|
|
|
#endif
|