mirror of
https://github.com/ivellioscolin/pykd.git
synced 2025-04-21 04:13:22 +08:00
[~] fixed for Win2003 x64 (and WinXp x64)
git-svn-id: https://pykd.svn.codeplex.com/svn@61497 9b283d60-5439-405e-af05-b73fd8c4d996
This commit is contained in:
SND\EreTIk_cp
parent
4ae55470b2
commit
262dff0703
@ -2,6 +2,18 @@ from pykd import *
|
|||||||
import sys
|
import sys
|
||||||
|
|
||||||
|
|
||||||
|
def getServiceAddrWlh(Start, Offset):
|
||||||
|
return Start + (Offset / 16)
|
||||||
|
|
||||||
|
def getServiceAddr2k3(Start, Offset):
|
||||||
|
return Start + Offset
|
||||||
|
|
||||||
|
if (ptrWord(getOffset("nt", "NtBuildNumber")) == 3790):
|
||||||
|
getServiceAddr = getServiceAddr2k3
|
||||||
|
else:
|
||||||
|
getServiceAddr = getServiceAddrWlh
|
||||||
|
|
||||||
|
|
||||||
def checkSSDT():
|
def checkSSDT():
|
||||||
|
|
||||||
nt = loadModule( "nt" )
|
nt = loadModule( "nt" )
|
||||||
@ -19,7 +31,7 @@ def checkSSDT():
|
|||||||
|
|
||||||
for i in range( 0, serviceCount ):
|
for i in range( 0, serviceCount ):
|
||||||
|
|
||||||
routineAddress = serviceTableStart + ( serviceTable[i] / 16 );
|
routineAddress = getServiceAddr(serviceTableStart, serviceTable[i]);
|
||||||
dprintln( findSymbol( routineAddress ) )
|
dprintln( findSymbol( routineAddress ) )
|
||||||
|
|
||||||
|
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user