Header inclusion feng-shui (each file only includes what it needs)

EDRSandblast/Utils/DriverOps.c

@@ -4,6 +4,10 @@
 --- Source and credit: https://github.com/gentilkiwi/mimikatz
 
 */
+#include <Windows.h>
+#include <aclapi.h>
+#include <Tchar.h>
+#include <time.h>
 
 #include "DriverOps.h"
 

EDRSandblast/Utils/FileVersion.c

@@ -3,6 +3,8 @@
 --- ntoskrnl.exe / wdigest.dll version compute functions.
 
 */
+#include <Tchar.h>
+#include <stdio.h>
 
 #include "FileVersion.h"
 

EDRSandblast/Utils/KernelMemoryPrimitives.c

@@ -4,6 +4,9 @@
 --- Source and credit: https://github.com/Barakat/CVE-2019-16098/blob/master/CVE-2019-16098.cpp
 
 */
+#include <Windows.h>
+#include <Tchar.h>
+#include <Psapi.h>
 
 #include "KernelMemoryPrimitives.h"
 

EDRSandblast/Utils/KernelPatternSearch.c

@@ -4,8 +4,9 @@
 --- Ultimately not used because too unreliable and too prone to BSoD.
 
 */
-
-#include "KernelPatternSearch.h"
+#include <Windows.h>
+#include <Tchar.h>
+#include "KernelMemoryPrimitives.h"
 
 DWORD64 PatternSearchStartingFromAddress(HANDLE Device, DWORD64 startAddress, DWORD bytesToScan, DWORD64 pattern, DWORD64 mask) {
     for (DWORD i = 0; i < bytesToScan; i++) {

EDRSandblast/Utils/LSASSDump.c

@@ -3,7 +3,10 @@
 --- LSASS dump functions.
 
 */
-
+#include <Windows.h>
+#include <TlHelp32.h>
+#include <minidumpapiset.h>
+#include <tchar.h>
 #include "LSASSDump.h"
 
 BOOL SetPrivilege(HANDLE hToken, LPCTSTR lpszPrivilege, BOOL bEnablePrivilege)

EDRSandblast/Utils/NtoskrnlOffsets.c

@@ -4,8 +4,11 @@
 --- Hardcoded patterns, with offsets for 350+ ntoskrnl versions provided in the CSV file.
 
 */
+#include <tchar.h>
+#include <stdio.h>
 
 #include "NtoskrnlOffsets.h"
+#include "FileVersion.h"
 
 union NtoskrnlOffsets ntoskrnlOffsets = { 0 };
 

EDRSandblast/Utils/WdigestOffsets.c

@@ -6,6 +6,10 @@
 
 */
 
+#include <tchar.h>
+#include <stdio.h>
+
+#include "FileVersion.h"
 #include "WdigestOffsets.h"
 
 union WdigestOffsets wdigestOffsets = { 0 };