system wide api hook

Question

denis1401 0 Newbie Poster

14 Years Ago

What is the best way to do system wide user mode (NOT KERNEL MODE) api hook on Windows NT?

c++

3 Contributors
4 Replies
80 Views
9 Hours Discussion Span
Latest Post 14 Years Ago Latest Post by MosaicFuneral

All 4 Replies

Ancient Dragon 5,243 Achieved Level 70

14 Years Ago

windows hooks

Reply to this topic

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.

denis1401 0 Newbie Poster · Answer 1 · 2009-05-07T08:50:29+00:00

thanks, but I'm not interested in these hooks (like keyboard hooks, mouse event hooks, etc.)
I need to intercept/hook every call to a certain win32 api function on the system
How do I do that (without modifing the dll files on disk)?

Ancient Dragon 5,243 Achieved Level 70 Team Colleague Featured Poster · Answer 2 · 2009-05-07T08:59:47+00:00

you can use the WH_CALLWNDPROC hook if the process you want has a window. Other than that, I don't know if its even possible to do what you want.

MosaicFuneral 812 Nearly a Posting Virtuoso · Answer 3 · 2009-05-07T10:00:10+00:00

One way might be: open every process, find if they import that particular function, if they do find where they call it and idk you solve the rest.

system wide api hook

Recommended Answers Collapse Answers

All 4 Replies

Recommended Answers