You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
first element (QWORD) is the size in bytes of pointers array following next
Windows 10 (10240, 10586, 14393, 15063, 16299, 17134, 17763, 18317)
first element (QWORD) is the size in bytes of pointers array following next, starting from RS1 (14393) contain revision marker (QWORD) at the end of this array which looks like 0xX00000Y where X is A (10) and Y is changing between Windows 10 version, for example in RS1(14393) this value is two in 19H1(18317) this value is six.
Callbacks names can be recovered from symbols. Since size of this array depends on Windows version as well as position of elements in this array it is better to hardcode these names.
The text was updated successfully, but these errors were encountered:
See for reference
https://github.com/swwwolf/wdbgark/blob/master/src/secicallbacks.cpp.
Assume support from 7 up to 10 19H1.
Callbacks array structure:
Callbacks names can be recovered from symbols. Since size of this array depends on Windows version as well as position of elements in this array it is better to hardcode these names.
The text was updated successfully, but these errors were encountered: