GetSyscallID

get windows system call number dynamically, it doesn't need the system call table.

Try

download

go get github.com/akkuman/getsyscallid/cmd/getsyscallid

help

> ./getsyscallid.exe -help    
Usage of getsyscallid.exe:
  -proc string
        The name of the api name from ntdll.dll (default "NtCreateProcess")

run

> ./get.exe -proc NtCreateProcess
the syscall Number is: b9

As a package

package main

import (
	"flag"
	"fmt"

	"github.com/akkuman/getsyscallid"
)

func main() {
	flag.Parse()
	sysID, err := getsyscallid.GetID("NtCreateProcess")
	if err != nil {
		fmt.Println(err)
		return
	}
	fmt.Printf("the syscall Number is: %x\n", sysID)
}

Reference

动态获取系统调用(syscall)号

Name		Name	Last commit message	Last commit date
Latest commit History 4 Commits
cmd/getsyscallid		cmd/getsyscallid
.gitignore		.gitignore
README.md		README.md
getsyscallid.go		getsyscallid.go
go.mod		go.mod
go.sum		go.sum
mksyscall.go		mksyscall.go
syscall_windows.go		syscall_windows.go
zsyscall_windows.go		zsyscall_windows.go

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

cmd/getsyscallid

cmd/getsyscallid

.gitignore

.gitignore

README.md

README.md

getsyscallid.go

getsyscallid.go

go.mod

go.mod

go.sum

go.sum

mksyscall.go

mksyscall.go

syscall_windows.go

syscall_windows.go

zsyscall_windows.go

zsyscall_windows.go

Repository files navigation

GetSyscallID

Try

download

help

run

As a package

Reference

About

Releases

Packages

Languages

akkuman/getsyscallid

Folders and files

Latest commit

History

Repository files navigation

GetSyscallID

Try

download

help

run

As a package

Reference

About

Topics

Resources

Stars

Watchers

Forks

Languages