Release 1.0

kkent030315 released this 15 May 10:34

· 44 commits to main since this release

492cab9

Usage

anycall64.exe [module name] [procedure name]

*administrator privilege does not required to run

Following augments are supported:

(optional) module name the module exports [procedure name] e.g, ntdll.dll
(optional) procedure name the function to hook, used to fetch from both ntoskrnl and [module name] e.g, NtTraceControl

if not specified, ntdll.dll and NtTraceControl are used.

Assets 3