Panoptes 1.0.0
Endpoint Detection and Response
Loading...
Searching...
No Matches
Functions | Variables
driver.cpp File Reference
#include "driver_constants.h"
#include "callbacks.h"
#include "pano_query.h"
#include "trace.h"
#include "pano_filter.h"

Go to the source code of this file.

Functions

void UnloadPanoptes (PDRIVER_OBJECT DriverObject)
 
NTSTATUS DriverEntry (PDRIVER_OBJECT DriverObject, PUNICODE_STRING RegistryPath)
 

Variables

UNICODE_STRING g_deviceName
 
UNICODE_STRING g_symLink
 
PDEVICE_OBJECT g_deviceObject
 
UNICODE_STRING g_SymbolicLinkName
 

Function Documentation

◆ DriverEntry()

NTSTATUS DriverEntry ( PDRIVER_OBJECT  DriverObject,
PUNICODE_STRING  RegistryPath 
)

Definition at line 23 of file driver.cpp.

27{
28 PAGED_CODE();
29 DriverObject->DriverUnload = UnloadPanoptes;
30
31 TraceInit();
32 Log_DriverEntry(DriverObject, RegistryPath);
33
34 NTSTATUS status = FilterInit(&DriverObject);
35 if (!NT_SUCCESS(status)) {
36 DbgPrintEx(DPFLTR_IHVDRIVER_ID, DPFLTR_ERROR_LEVEL, "[!] Panoptes: An error occured when attempting to initialized filter\n");
37 return status;
38 }
39
40 //status = InitializeDriverLink(driver_object);
41 //if (!NT_SUCCESS(status))
42 //{
43 // DbgPrintEx(DPFLTR_IHVDRIVER_ID, DPFLTR_ERROR_LEVEL, "[!] Panoptes: An error occured when attempting to initialized device pipe\n");
44 // return status;
45 //}
46
47 status = InitializeKernelCallbacks();
48 if (!NT_SUCCESS(status))
49 {
50 DbgPrintEx(DPFLTR_IHVDRIVER_ID, DPFLTR_ERROR_LEVEL, "[!] Panoptes: An error occured when attempting to initialized kernel callbacks\n");
51 return status;
52 }
53
54 return 0;
55}
InitializeKernelCallbacks
NTSTATUS InitializeKernelCallbacks()
Definition callbacks.cpp:558
UnloadPanoptes
void UnloadPanoptes(PDRIVER_OBJECT DriverObject)
Definition driver.cpp:12
FilterInit
NTSTATUS FilterInit(PDRIVER_OBJECT *DriverObject)
Definition pano_filter.cpp:244
Log_DriverEntry
void Log_DriverEntry(PDRIVER_OBJECT DriverObject, PUNICODE_STRING RegistryPath)
Definition trace.cpp:22
TraceInit
void TraceInit()
Definition trace.cpp:10

References FilterInit(), InitializeKernelCallbacks(), Log_DriverEntry(), TraceInit(), and UnloadPanoptes().

◆ UnloadPanoptes()

void UnloadPanoptes ( PDRIVER_OBJECT  DriverObject)

Definition at line 12 of file driver.cpp.

13{
14 PAGED_CODE();
15 DbgPrintEx(DPFLTR_IHVDRIVER_ID, DPFLTR_ERROR_LEVEL, "[+] Panoptes: Driver Exit\n");
16 Log_DriverExit(DriverObject);
17 //IoDeleteDevice(driver_object);
18 //IoDeleteSymbolicLink(&g_symLink);
19 TraceUninit();
20 RemoveCallbacks();
21}
RemoveCallbacks
VOID RemoveCallbacks()
Definition callbacks.cpp:614
Log_DriverExit
void Log_DriverExit(PDRIVER_OBJECT DriverObject)
Definition trace.cpp:34
TraceUninit
void TraceUninit()
Definition trace.cpp:15

References Log_DriverExit(), RemoveCallbacks(), and TraceUninit().

Referenced by DriverEntry().

Variable Documentation

◆ g_deviceName

UNICODE_STRING g_deviceName

Definition at line 7 of file driver.cpp.

◆ g_deviceObject

PDEVICE_OBJECT g_deviceObject

Definition at line 9 of file driver.cpp.

◆ g_SymbolicLinkName

UNICODE_STRING g_SymbolicLinkName

Definition at line 10 of file driver.cpp.

◆ g_symLink

UNICODE_STRING g_symLink

Definition at line 8 of file driver.cpp.

Generated by doxygen 1.9.8