For a small project that I’m working on, I need to prevent ".exe’ files from running and know the path of the file that was trying to run. Maybe windows API hooking can help me, but I am unsure, and I haven’t worked with it. Can anyone guide me about how I can do it, ..
Category : api-hook
I have written a simple test code that injects my hooking dll to some of Windows applications(explorer.exe, notepad.exe etc.) and in the target processes, I hooked Win32 API functions like CopyFileEx, CreateFile using EasyHook library. In my hooking function for instance Hooked_CopyFileExW, I need to send an event message (contains source file path, pid of ..
In Visual Studio 2019 on Windows 10 x64 20H2 I’m trying to hook the exported function of a DLL for which I don’t have a lib or include file. While I have used MinHook hundreds of times successfully in the past it was always with functions I had the lib and include file for. I ..
I always used this following custom code to api hook (inline hook method), and is working fine in pratically all Windows versions x64, except in newest Windows 10 versions like build 18362 and highter. What’s necessary to fix it? void* DetourFunction64(void* pSource, void* pDestination, int dwLen) { DWORD MinLen = 14; if (dwLen < MinLen) ..
Windows API hooking using Detours Can someone please provide me a C++ code that uses MS Detours to hook a CreateProcess() function only when it is called with a CREATE_SUSPENDED flag. CreateProcess(NULL, // No module name (use command line) argv[1], // Command line NULL, // Process handle not inheritable NULL, // Thread handle not inheritable ..
Web Development Company
Recent Comments