PssNtCaptureSnapshot - NtDoc

Native API online documentation, based on the System Informer (formerly Process Hacker) phnt headers 
#ifndef _NTPSAPI_H
// Reserve objects
#if (PHNT_MODE != PHNT_MODE_KERNEL)
#if (PHNT_VERSION >= PHNT_WINBLUE)

// rev
/**
 * Captures a snapshot of the specified process.
 * 
 * @param SnapshotHandle Pointer to a variable that receives the snapshot handle.
 * @param ProcessHandle Handle to the process.
 * @param CaptureFlags Flags indicating what to capture.
 * @param ThreadContextFlags Optional flags for capturing thread context.
 * @return NTSTATUS Successful or errant status.
 */
NTSYSAPI
NTSTATUS
NTAPI
PssNtCaptureSnapshot(
    _Out_ PHANDLE SnapshotHandle,
    _In_ HANDLE ProcessHandle,
    _In_ PSSNT_CAPTURE_FLAGS CaptureFlags,
    _In_opt_ ULONG ThreadContextFlags
    );

#endif
#endif
#endif

View code on GitHub

No description available.

Edit description on GitHub