阅读背景:

通过ASM(x86)处理系统调用(需要ebp)

来源:互联网 

On x64 I handle syscalls (I hook syscalls and then call them myself) by reserving some space on the stack and copying all the arguments (6) to the stack. I save all the arguments so I can use them later in the code.On x64 I handle syscalls (I hook syscalls and t




你的当前访问异常,请进行认证后继续阅读剩余内容。

分享到: