ripper_zipper Posted August 7, 2019 Share Posted August 7, 2019 (edited) Hello All, Can You share some cool and useful NtQueryxxx functions such as NtQueryInformationProcess's ProcessDebugPort can be used to Detect Debuggers and SystemProcessAndThreadInformation used to check all the process It'd be cool to have list of these since some of infoclass are undocumented Edited August 7, 2019 by ripper_zipper Link to comment Share on other sites More sharing options...
atom0s Posted August 7, 2019 Share Posted August 7, 2019 Sites like NT Undocumented have a lot of useful information for these functions: https://undocumented.ntinternals.net/ Link to comment Share on other sites More sharing options...
evlncrn8 Posted August 7, 2019 Share Posted August 7, 2019 reactos source code can also be quite a treasure trove Link to comment Share on other sites More sharing options...
Teddy Rogers Posted August 7, 2019 Share Posted August 7, 2019 NtQuerySystemInformation Ted. Link to comment Share on other sites More sharing options...
ripper_zipper Posted August 7, 2019 Author Share Posted August 7, 2019 43 minutes ago, Teddy Rogers said: NtQuerySystemInformation Ted. ah. nice you're using SystemTimeOfDayInformation Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now