驱动层和r3程序通讯的列子参考爱写驱动的女装大佬
生活随笔
收集整理的這篇文章主要介紹了
驱动层和r3程序通讯的列子参考爱写驱动的女装大佬
小編覺得挺不錯的,現在分享給大家,幫大家做個參考.
開發環境:VS2013+WDK8.1
驅動層服務層:
#include <ntddk.h>#define DEVICE_NAME "\\Device\\MyReadDevice" #define SYM_LINK_NAME "\\??\\MyRead"NTSTATUS DriverUnload(PDRIVER_OBJECT driver) {DbgPrint("unload me");return STATUS_SUCCESS; }NTSTATUS MyDriverRead(PDEVICE_OBJECT device,PIRP pirp) {PIO_STACK_LOCATION stack = IoGetCurrentIrpStackLocation(pirp);ULONG readLength = stack->Parameters.Read.Length;pirp->IoStatus.Status = STATUS_SUCCESS;pirp->IoStatus.Information = readLength;memset(pirp->AssociatedIrp.SystemBuffer, 0x90, readLength);IoCompleteRequest(pirp, IO_NO_INCREMENT);DbgPrint("ReadOver\n");return STATUS_SUCCESS; }NTSTATUS MyDriverCreate(PDEVICE_OBJECT device, PIRP pirp) {pirp->IoStatus.Status = STATUS_SUCCESS;pirp->IoStatus.Information = 0;IoCompleteRequest(pirp, IO_NO_INCREMENT);DbgPrint("create device success\n");return STATUS_SUCCESS; } //NTSTATUS MyDriverWrite(PDEVICE_OBJECT device, PIRP pirp) //{ // PIO_STACK_LOCATION stack = IoGetCurrentIrpStackLocation(pirp); // ULONG readLength = stack->Parameters.Read.Length; // pirp->IoStatus.Status = STATUS_SUCCESS; // pirp->IoStatus.Information = readLength; // memset(pirp->AssociatedIrp.SystemBuffer, 0x90, readLength); // IoCompleteRequest(pirp, IO_NO_INCREMENT); // DbgPrint("ReadOver\n"); // return STATUS_SUCCESS; //}NTSTATUS DriverEntry(PDRIVER_OBJECT driver, PUNICODE_STRING reg_path) {driver->MajorFunction[IRP_MJ_READ] = MyDriverRead;driver->MajorFunction[IRP_MJ_CREATE] = MyDriverCreate;driver->DriverUnload = DriverUnload;PDEVICE_OBJECT pDevice;UNICODE_STRING DeviceName;RtlInitUnicodeString(&DeviceName, L"\\Device\\MyReadDevice");NTSTATUS status = IoCreateDevice(driver, 0, &DeviceName,FILE_DEVICE_UNKNOWN,0,TRUE,&pDevice);if (!NT_SUCCESS(status)){DbgPrint("Create Device Failed\n");return STATUS_SUCCESS;}pDevice->Flags |= DO_BUFFERED_IO;DbgPrint("Crate Device Successfully!");UNICODE_STRING SymLinkName;RtlInitUnicodeString(&SymLinkName, L"\\??\\MyRead");status = IoCreateSymbolicLink(&SymLinkName, &DeviceName);if (!NT_SUCCESS(status)){DbgPrint("Create SymbolLink Failed\n");IoDeleteDevice(pDevice);return STATUS_SUCCESS;}return STATUS_SUCCESS;}r3客戶端:
// R3Read.cpp : 定義控制臺應用程序的入口點。 //#include "stdafx.h" #include <stdio.h> #include <Windows.h>int _tmain(int argc, _TCHAR* argv[]) {HANDLE hDevice = CreateFile(L"\\\\.\\MyRead", GENERIC_READ | GENERIC_WRITE, 0, NULL, OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, NULL);if (hDevice == INVALID_HANDLE_VALUE){printf("Failed to obtain file handle to Device");getchar();return 1;}UCHAR buffer[10];ULONG ulRead;BOOL bRet = ReadFile(hDevice, buffer, 10, &ulRead, NULL);if (bRet){printf("Read %d bytes;\n", ulRead);for (int i = 0; i < ulRead; i++){printf("%02x", buffer[i]);}}getchar();return 0; }查看結果:
總結
以上是生活随笔為你收集整理的驱动层和r3程序通讯的列子参考爱写驱动的女装大佬的全部內容,希望文章能夠幫你解決所遇到的問題。
- 上一篇: pwnable.kr lotto题解
- 下一篇: FSD键盘钩子框架参考爱写驱动的女装大佬