I am reading a ring 0 privilege acquiring source code in windows XP in

Question

0

Editorial Team

Asked: May 23, 20262026-05-23T08:52:42+00:00 2026-05-23T08:52:42+00:00

I am reading a ring 0 privilege acquiring source code in windows XP in

0

I am reading a ring 0 privilege acquiring source code in windows XP

in that code,

there are 2 lines

which are

LONG (NTAPI *NtSystemDebugControl)     (int,void*,DWORD,void*,DWORD,DWORD*);
*(DWORD*)   &NtSystemDebugControl =(DWORD)GetProcAddress(LoadLibrary("ntdll"),"NtSystemDebugControl");

it is first time I see such a grammar

what does both of 2 lines means?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-23T08:52:43+00:00

Editorial Team

2026-05-23T08:52:43+00:00Added an answer on May 23, 2026 at 8:52 am

The first line creates a function pointer, the second one initializes the function pointer in a rather horrible way (It will fail on 64-bit machines, though that is probably insignificant in this case).

If you’re asking what GetProcAddress does I suggest reading about it in MSDN.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I am reading a ring 0 privilege acquiring source code in windows XP in

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply