Domito/include/Domito.h

#pragma once

//
// Custom allocator for function that allocate pool memory
// 
typedef
_IRQL_requires_same_
_Function_class_(EVT_DOMITO_ALLOCATE_ROUTINE)
__drv_allocatesMem(Mem)
PVOID
NTAPI
EVT_DOMITO_ALLOCATE_ROUTINE(
    _In_ SIZE_T ByteSize
);
typedef EVT_DOMITO_ALLOCATE_ROUTINE* PFN_DOMITO_ALLOCATE_ROUTINE;


// 
// Finds the base address of a driver module
// 
_Success_(return == STATUS_SUCCESS)
_Must_inspect_result_
_IRQL_requires_max_(PASSIVE_LEVEL)
EXTERN_C
NTSTATUS
DomitoFindModuleBaseAddress(
    _In_ STRING ModuleName,
    _In_ PFN_DOMITO_ALLOCATE_ROUTINE Allocator,
    _Inout_opt_ PVOID * ModuleBase
);

//
// Finds the address of an exported function by name
// 
_Success_(return == STATUS_SUCCESS)
_Must_inspect_result_
_IRQL_requires_max_(PASSIVE_LEVEL)
EXTERN_C
NTSTATUS
DomitoFindExportedFunctionAddress(
    _In_ PVOID ModuleBase,
    _In_ STRING FunctionName,
    _Inout_opt_ PVOID * FunctionAddress
);

//
// Scans a provided buffer for a memory pattern
// 
_Success_(return == STATUS_SUCCESS)
_Must_inspect_result_
_IRQL_requires_max_(DISPATCH_LEVEL)
NTSTATUS
DomitoMemorySearchPattern(
    _In_ PCUCHAR pcPattern,
    _In_ UCHAR uWildcard,
    _In_ SIZE_T puLen,
    _In_ PVOID pcBase,
    _In_ SIZE_T puSize,
    _Outptr_result_maybenull_ PVOID * ppMatch
);
Added code from https://github.com/nefarius/WDF-Utils/blob/master/Snippets/WDM/GetProcAddress.md 2023-07-01 04:14:20 +02:00			`#pragma once`

Moved internally used types to source file 2023-07-01 04:39:52 +02:00			`//`
			`// Custom allocator for function that allocate pool memory`
			`//`
Added .editorconfig 2023-07-01 04:23:11 +02:00			`typedef`
			`_IRQL_requires_same_`
Exposed custom allocator callback 2023-07-01 04:36:59 +02:00			`_Function_class_(EVT_DOMITO_ALLOCATE_ROUTINE)`
Added .editorconfig 2023-07-01 04:23:11 +02:00			`__drv_allocatesMem(Mem)`
			`PVOID`
			`NTAPI`
Exposed custom allocator callback 2023-07-01 04:36:59 +02:00			`EVT_DOMITO_ALLOCATE_ROUTINE(`
Added DomitoMemorySearchPattern 2023-07-01 05:24:04 +02:00			`_In_ SIZE_T ByteSize`
Added code from https://github.com/nefarius/WDF-Utils/blob/master/Snippets/WDM/GetProcAddress.md 2023-07-01 04:14:20 +02:00			`);`
Exposed custom allocator callback 2023-07-01 04:36:59 +02:00			`typedef EVT_DOMITO_ALLOCATE_ROUTINE* PFN_DOMITO_ALLOCATE_ROUTINE;`
Added code from https://github.com/nefarius/WDF-Utils/blob/master/Snippets/WDM/GetProcAddress.md 2023-07-01 04:14:20 +02:00

Exposed custom allocator callback 2023-07-01 04:36:59 +02:00			`//`
			`// Finds the base address of a driver module`
			`//`
Added code from https://github.com/nefarius/WDF-Utils/blob/master/Snippets/WDM/GetProcAddress.md 2023-07-01 04:14:20 +02:00			`_Success_(return == STATUS_SUCCESS)`
			`_Must_inspect_result_`
			`_IRQL_requires_max_(PASSIVE_LEVEL)`
			`EXTERN_C`
			`NTSTATUS`
Renamed function 2023-07-01 05:33:35 +02:00			`DomitoFindModuleBaseAddress(`
Added DomitoMemorySearchPattern 2023-07-01 05:24:04 +02:00			`_In_ STRING ModuleName,`
			`_In_ PFN_DOMITO_ALLOCATE_ROUTINE Allocator,`
			`_Inout_opt_ PVOID * ModuleBase`
Added code from https://github.com/nefarius/WDF-Utils/blob/master/Snippets/WDM/GetProcAddress.md 2023-07-01 04:14:20 +02:00			`);`

Exposed custom allocator callback 2023-07-01 04:36:59 +02:00			`//`
			`// Finds the address of an exported function by name`
			`//`
Added code from https://github.com/nefarius/WDF-Utils/blob/master/Snippets/WDM/GetProcAddress.md 2023-07-01 04:14:20 +02:00			`_Success_(return == STATUS_SUCCESS)`
			`_Must_inspect_result_`
			`_IRQL_requires_max_(PASSIVE_LEVEL)`
			`EXTERN_C`
			`NTSTATUS`
			`DomitoFindExportedFunctionAddress(`
Added DomitoMemorySearchPattern 2023-07-01 05:24:04 +02:00			`_In_ PVOID ModuleBase,`
			`_In_ STRING FunctionName,`
			`_Inout_opt_ PVOID * FunctionAddress`
			`);`

			`//`
			`// Scans a provided buffer for a memory pattern`
			`//`
			`_Success_(return == STATUS_SUCCESS)`
			`_Must_inspect_result_`
			`_IRQL_requires_max_(DISPATCH_LEVEL)`
			`NTSTATUS`
			`DomitoMemorySearchPattern(`
			`_In_ PCUCHAR pcPattern,`
			`_In_ UCHAR uWildcard,`
			`_In_ SIZE_T puLen,`
			`_In_ PVOID pcBase,`
			`_In_ SIZE_T puSize,`
Update Domito.h 2023-07-01 05:24:47 +02:00			`_Outptr_result_maybenull_ PVOID * ppMatch`
Added code from https://github.com/nefarius/WDF-Utils/blob/master/Snippets/WDM/GetProcAddress.md 2023-07-01 04:14:20 +02:00			`);`