http://msdn.microsoft.com/en-us/library ... 85%29.aspx
have a question about this api the second param'
it says it only has one SUPPORTED possibility... not that we can't obtain information and pass it on correct?
was kind of just wondering if this could be used to bypass NtQueryInformationProcess in a hook, by using this api to set proper Process Info o.O
Idk just woke up, still eh...
Had a long day yesterday coding syscalls which are still buggy-ish (or maybe its my write math fuck i hate console(External))
I know this api is INTENDED to set priority to memory within the workingset but, i was wondering if we could make our own ProcessInformationClass structure (modified of course) to pass on to this api.
_In_ HANDLE hProcess,
_In_ PROCESS_INFORMATION_CLASS ProcessInformationClass,
_In_ DWORD ProcessInformationSize
A handle to the process. This handle must have the PROCESS_SET_INFORMATION access right. For more information, see Process Security and Access Rights.
The class of information to set. The only supported value is ProcessMemoryPriority.
Pointer to a structure that contains the type of information specified by the ProcessInformationClass parameter.
If the ProcessInformationClass parameter is ProcessMemoryPriority, this parameter must point to a MEMORY_PRIORITY_INFORMATION structure.
The size in bytes of the structure specified by the ProcessInformation parameter.
If the ProcessInformationClass parameter is ProcessMemoryPriority, this parameter must be sizeof(MEMORY_PRIORITY_INFORMATION).
If the function succeeds, the return value is nonzero.
If the function fails, the return value is zero. To get extended error information, call GetLastError.