12

Reading the documentation of the windows defender API, for example in MpManagerOpen Function:

https://msdn.microsoft.com/en-us/library/windows/desktop/dn920115(v=vs.85).aspx

I see that the required include file is MpClient.h. However I couldn't find it anywhere. Does anyone know where can I find this file, or simply how to use the API without it (without copying the prototypes and structs to my own code), in a C program?

Thanks in advance.

macro_controller
  • 1,469
  • 1
  • 14
  • 32
  • Do you have the Windows 8 SDK? – Cody Gray - on strike Apr 23 '17 at 13:43
  • Yes I have the SDK (even windows 10) – macro_controller Apr 23 '17 at 13:45
  • 3
    You have two options: you can either copy the prototypes or you find the files that include them. I copied them from [MSDN](https://msdn.microsoft.com/en-us/library/vs/alm/dn920144(v=vs.85).aspx) and it seems to work. I wouldn't recommend using it though, as important parts of the API are obviously undocumented. – Axalo Apr 23 '17 at 15:50

1 Answers1

2

I was looking for that header as well. I found a copy here: https://github.com/hfiref0x/UACME/blob/master/Source/Shared/mpclient.h

AZDean
  • 1,774
  • 2
  • 17
  • 24
  • Note that URL is broken now. I found another one which currently works: https://github.com/UldisRinkevichs/libmpclient/blob/48585c8916864c13113b3af166b2718f7e0d4464/Source/libmpclient/libmpclient/MpClient.h#L11 – Simon Kissane Jan 11 '23 at 01:30