From ef2b58697fdcbf86d93f8371c188f61f9445a12c Mon Sep 17 00:00:00 2001 From: UnknownObject <38148526+UnknownObject000@users.noreply.github.com> Date: Thu, 16 Jun 2022 19:02:10 +0800 Subject: [PATCH] Update README.md --- README.md | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/README.md b/README.md index 18470de..1587241 100644 --- a/README.md +++ b/README.md @@ -11,6 +11,9 @@ NTAPI系统关键进程视频源代码,用于演示未公开的API VOID RtlSetProcessIsCritical(BOOLEAN NewValue, PBOOLEAN OldValue, BOOLEAN IsWinlogon); ``` +### 所在DLL + - ntdll.dll + ## 关于RtlSetThreadIsCritical ### 函数原型 @@ -25,6 +28,9 @@ VOID RtlSetThreadIsCritical(BOOLEAN NewValue, PBOOLEAN OldValue, BOOLEAN IsWinlo NTSTATUS NtQueryInformationProcess(IN HANDLE ProcessHandle, IN PROCESSINFOCLASS ProcessInformationClass, OUT PVOID ProcessInformation, IN ULONG ProcessInformationLength, OUT PULONG ReturnLength); ``` +### 所在DLL + - ntdll.dll + ### 未导出类型 ```c++ enum PROCESSINFOCLASS @@ -133,5 +139,8 @@ enum PROCESSINFOCLASS }; ``` +### 所在DLL + - ntdll.dll + ### 特殊说明 ```NtQueryInformationProcess```函数及其未导出类型也可在```winternl.h```中找到。