Description: an easy way to set up system-wide global API hooks. It uses AppInit_DLLs registry key for DLL injection and Mhook library for API hooking. To illustrate this technique we will show how to easily hide calc.exe from the list of running processes.
To Search:
File list (Check if you may need any files):
AppInitHook
...........\AppInitHook.vcproj
...........\main.cpp
...........\mhook
...........\.....\disasm-lib
...........\.....\..........\cpu.c
...........\.....\..........\cpu.h
...........\.....\..........\disasm.c
...........\.....\..........\disasm.h
...........\.....\..........\disasm_x86.c
...........\.....\..........\disasm_x86.h
...........\.....\..........\disasm_x86_tables.h
...........\.....\..........\misc.c
...........\.....\..........\misc.h
...........\.....\mhook-lib
...........\.....\.........\mhook.cpp
...........\.....\.........\mhook.h
...........\stdafx.cpp
...........\stdafx.h
...........\targetver.h
Release
.......\AppInitHook.dll
AppInitHook.sln
Download