- Written in C
- Supports both 32-bit and 64-bit
- Supports both Unicode and Multi-Byte Character Set
- Manual mode that allows achieve zero imports
- Function address is fetched only once, then retrieved from the list thereafter
CALL("DbgPrint", 1, "DbgPrint Test\n");Driver example
(MANUAL_MODE disabled):
(MANUAL_MODE enabled):
Manual mode requires you to obtain the address of MmGetSystemRoutineAddress manually, for example, by passing the address in mapping parameters from user mode.