Hi everyone .
I am looking for a sign driver that can provide me with a call to PsSetCreateProcessNotifyRoutineEx.
I am working on a project to monitor the CreateProcess function, to trace any new process without using ETW.
Thanks.
I am looking for a sign driver that can provide me with a call to PsSetCreateProcessNotifyRoutineEx.
I am working on a project to monitor the CreateProcess function, to trace any new process without using ETW.
Thanks.
