vxug-WinAPI-Tricks/GetNtdllWithoutFunction.c at 9cf0aa532a92b61b457cf2405324d3d574996de7 - vxug-WinAPI-Tricks - git.tcp.direct

tcp.direct/vxug-WinAPI-Tricks

vxunderground 267d3a8b48

Rename Library Management/GetNtdllWithoutFunction.c to NtApi/GetNtdllWithoutFunction.c

2021-07-26 23:18:19 -05:00

11 lines

206 B

C

Raw Blame History

 PPEB GetPebAlt(VOID)
 {
 	PTEB Teb;
 #if defined(_WIN64)
 	Teb = (PTEB)__readgsqword(0x30);
 #elif define(_WIN32)
 	Teb = (PTEB)__readfsdword(0x18);
 #endif
 	return (PPEB)Teb->ProcessEnvironmentBlock;
 }