Description: A couple of days ago a friend wanted me to help be a ApiHook things, the company' s Net slow, can only be found internally website, the results of the n-found no complete source code, an extremely depressing, it is a codeproject to the original code, after Convenience also download their own use. Explain that this code has CodeProject, the code I am generally turned a little, only linked to the introduction of the function table into SetWindowHookEx and CreateRemoteThread have two ways, the process of enumeration to distinguish between the different systems are used psai and toolhelp, the other in order to Process to create access to the message, make a drive to register a callback function, in general, has done quite a part in the injection rod, if want to hang a variety of functions, can be combined to use detour.
To Search:
- [APIHooker] - document monitoring hook into DLL using
File list (Check if you may need any files):
Common
......\Common.h
......\CustomMessages.h
......\IniFile.cpp
......\IniFile.h
......\LockMgr.cpp
......\LockMgr.h
......\LogFile.h
......\ModuleInstance.cpp
......\ModuleInstance.h
......\SysUtils.h
HookSrv
.......\ApplicationScope.cpp
.......\ApplicationScope.h
.......\HookSrv.cpp
.......\HookSrv.dsp
.......\HookSrv.h
.......\HookSrv.plg
.......\HookSrv.rc
.......\LimitSingleInstance.cpp
.......\LimitSingleInstance.h
.......\MainFrm.cpp
.......\MainFrm.h
.......\res
.......\...\HookSrv.rc2
.......\...\trayicon.ico
.......\Resource.h
.......\StdAfx.cpp
.......\StdAfx.h
.......\TrayIcon.cpp
.......\TrayIcon.h
HookSystem.dsw
HookTool
........\ApiHook.cpp
........\ApiHook.h
........\HookTool.cpp
........\HookTool.def
........\HookTool.dsp
........\Injector.cpp
........\Injector.h
........\Interlocked.h
........\ModuleScope.cpp
........\ModuleScope.h
........\NtDriverController.cpp
........\NtDriverController.h
........\NtInjectorThread.cpp
........\NtInjectorThread.h
........\NtProcessMonitor.cpp
........\NtProcessMonitor.h
NTProcDrv
.........\NTProcDrv.c
.........\NTProcDrv.dsp
TestApp
.......\TestApp.cpp
.......\TestApp.dsp