https://github.com/akkuman/getsyscallid
get windows system call number dynamically
https://github.com/akkuman/getsyscallid
syscalls windows
Last synced: 3 months ago
JSON representation
get windows system call number dynamically
- Host: GitHub
- URL: https://github.com/akkuman/getsyscallid
- Owner: akkuman
- Created: 2021-10-08T03:02:48.000Z (over 4 years ago)
- Default Branch: master
- Last Pushed: 2021-10-08T03:18:14.000Z (over 4 years ago)
- Last Synced: 2024-06-20T03:34:12.091Z (almost 2 years ago)
- Topics: syscalls, windows
- Language: Go
- Homepage:
- Size: 3.91 KB
- Stars: 7
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# GetSyscallID
get windows system call number dynamically, it doesn't need the system call table.
## Try
### download
```shell
go get github.com/akkuman/getsyscallid/cmd/getsyscallid
```
### help
```shell
> ./getsyscallid.exe -help
Usage of getsyscallid.exe:
-proc string
The name of the api name from ntdll.dll (default "NtCreateProcess")
```
### run
```shell
> ./get.exe -proc NtCreateProcess
the syscall Number is: b9
```
## As a package
```go
package main
import (
"flag"
"fmt"
"github.com/akkuman/getsyscallid"
)
func main() {
flag.Parse()
sysID, err := getsyscallid.GetID("NtCreateProcess")
if err != nil {
fmt.Println(err)
return
}
fmt.Printf("the syscall Number is: %x\n", sysID)
}
```
## Reference
- [动态获取系统调用(syscall)号](https://idiotc4t.com/defense-evasion/dynamic-get-syscallid)