DaniWeb IT Discussion Community

DaniWeb IT Discussion Community (http://www.daniweb.com/forums/index.php)
-   C++ (http://www.daniweb.com/forums/forum8.html)
-   -   system wide api hook (http://www.daniweb.com/forums/thread190829.html)

denis1401 May 6th, 2009 9:24 pm
system wide api hook
 
What is the best way to do system wide user mode (NOT KERNEL MODE) api hook on Windows NT?

Ancient Dragon May 6th, 2009 9:37 pm
Re: system wide api hook
 
windows hooks

denis1401 May 6th, 2009 11:50 pm
Re: system wide api hook
 
thanks, but I'm not interested in these hooks (like keyboard hooks, mouse event hooks, etc.)
I need to intercept/hook every call to a certain win32 api function on the system
How do I do that (without modifing the dll files on disk)?

Ancient Dragon May 6th, 2009 11:59 pm
Re: system wide api hook
 
you can use the WH_CALLWNDPROC hook if the process you want has a window. Other than that, I don't know if its even possible to do what you want.

MosaicFuneral May 7th, 2009 1:00 am
Re: system wide api hook
 
One way might be: open every process, find if they import that particular function, if they do find where they call it and idk you solve the rest.


All times are GMT -4. The time now is 10:22 am.

Forum system based on vBulletin Copyright ©2000 - 2009, Jelsoft Enterprises Ltd.
©2003 - 2009 DaniWeb® LLC