#include <windows.h>
#include <winternl.h>
#include <stdio.h>

#define DIRECTORY_QUERY 0x0001
#define OBJ_CASE_INSENSITIVE 0x00000040L
#define FILE_NON_DIRECTORY_FILE 0x00000040
#define FILE_SYNCHRONOUS_IO_NONALERT 0x00000020

#pragma comment(lib, "ntdll.lib")

typedef struct _OBJECT_DIRECTORY_INFORMATION {
   UNICODE_STRING Name;
   UNICODE_STRING TypeName;
} OBJECT_DIRECTORY_INFORMATION, * POBJECT_DIRECTORY_INFORMATION;

typedef NTSTATUS(NTAPI* PNtOpenDirectoryObject)(PHANDLE, ACCESS_MASK, POBJECT_ATTRIBUTES);
typedef NTSTATUS(NTAPI* PNtQueryDirectoryObject)(HANDLE, PVOID, ULONG, BOOLEAN, BOOLEAN, PULONG, PULONG);
typedef NTSTATUS(NTAPI* PNtOpenFile)(PHANDLE, ACCESS_MASK, POBJECT_ATTRIBUTES, PIO_STATUS_BLOCK, ULONG, ULONG);

void ListAndTestDevices() {
   HMODULE hNtdll = GetModuleHandleA("ntdll.dll");
   PNtOpenDirectoryObject NtOpenDirectoryObject = (PNtOpenDirectoryObject)GetProcAddress(hNtdll, "NtOpenDirectoryObject");
   PNtQueryDirectoryObject NtQueryDirectoryObject = (PNtQueryDirectoryObject)GetProcAddress(hNtdll, "NtQueryDirectoryObject");
   PNtOpenFile NtOpenFile = (PNtOpenFile)GetProcAddress(hNtdll, "NtOpenFile");

   HANDLE hDir;
   OBJECT_ATTRIBUTES attr;
   UNICODE_STRING dirName;
   RtlInitUnicodeString(&dirName, L"\\Device");
   InitializeObjectAttributes(&attr, &dirName, OBJ_CASE_INSENSITIVE, NULL, NULL);

   NTSTATUS status = NtOpenDirectoryObject(&hDir, DIRECTORY_QUERY, &attr);
   if (status != 0) {
       printf("Failed to open \\Device. Status: 0x%08X\n", status);
       return;
   }

   // Use a larger buffer to ensure we catch the first batch of entries
   BYTE buffer[8192];
   ULONG context = 0, returnLength = 0;

   printf("%-35s | %-15s | %-15s\n", "Device Name", "Type", "Status (Hex)");
   printf("-------------------------------------------------------------------------------------\n");

   // Query the directory. If status is STATUS_NO_MORE_ENTRIES (0x80000006), the loop ends.
   while ((status = NtQueryDirectoryObject(hDir, buffer, sizeof(buffer), FALSE, FALSE, &context, &returnLength)) >= 0) {
       POBJECT_DIRECTORY_INFORMATION info = (POBJECT_DIRECTORY_INFORMATION)buffer;

       while (info->Name.Buffer != NULL && info->Name.Length > 0) {

           // Build full path safely
           WCHAR fullPath[512] = { 0 };
           wcscpy_s(fullPath, 512, L"\\Device\\");
           wcsncat_s(fullPath, 512, info->Name.Buffer, info->Name.Length / sizeof(WCHAR));

           UNICODE_STRING uDevName;
           RtlInitUnicodeString(&uDevName, fullPath);

           OBJECT_ATTRIBUTES devAttr;
           InitializeObjectAttributes(&devAttr, &uDevName, OBJ_CASE_INSENSITIVE, NULL, NULL);

           HANDLE hDevice = NULL;
           IO_STATUS_BLOCK ioStatus;

           NTSTATUS openStatus = NtOpenFile(
               &hDevice,
               GENERIC_READ | SYNCHRONIZE,
               &devAttr,
               &ioStatus,
               FILE_SHARE_READ | FILE_SHARE_WRITE,
               FILE_NON_DIRECTORY_FILE | FILE_SYNCHRONOUS_IO_NONALERT
           );

           printf("%-35wZ | %-15wZ | ", &info->Name, &info->TypeName);

           if (openStatus == 0) {
               printf("[ SUCCESS ] 0x%08X\n", openStatus);
               CloseHandle(hDevice);
           }
           else {
               printf("[  FAIL   ] 0x%08X\n", openStatus);
           }

           info++; // Advance pointer
       }

       // If the buffer was exactly full, there might be more, but usually context handles this.
       if (status == 0x80000006) break;
   }

   CloseHandle(hDir);
}

int main() {
   ListAndTestDevices();
   printf("\nDone. Press any key...");
   getchar();
   return 0;
}