This is a pretty simple concept and it might already exist. A user would run something like !plugin RtlHeapAlloc and the plugin would automatically set a breakpoint on RtlHeapAlloc() that will print out the arguments when the function is originally called and the return value of the function after it returns.
This is a pretty simple concept and it might already exist. A user would run something like !plugin RtlHeapAlloc and the plugin would automatically set a breakpoint on RtlHeapAlloc() that will print out the arguments when the function is originally called and the return value of the function after it returns.