Search found 3 matches

by rrr_rrr_111
Sun Aug 12, 2018 5:08 am
Forum: Kernel-Mode Development
Topic: Hooking the offical way?
Replies: 8
Views: 7508

Re: Hooking the offical way?

I don't understand how detours is related to hooking in kernel mode? I posted this inside "kernel mode development" section...
by rrr_rrr_111
Thu Aug 09, 2018 8:14 pm
Forum: Kernel-Mode Development
Topic: Hooking the offical way?
Replies: 8
Views: 7508

Re: Hooking the offical way?

You can inject a DLL into your target process(es) and use Microsoft Detours hooking engine if you don't want to use 3rd party hooking engines. However, there really isn't any "official" method, Detours just happens to be Microsoft's own hooking solution for various tasks over the years. What about ...
by rrr_rrr_111
Mon Aug 06, 2018 8:23 pm
Forum: Kernel-Mode Development
Topic: Hooking the offical way?
Replies: 8
Views: 7508

Hooking the offical way?

Hi guys, I've got a question on how to be able to hook various WinAPI functions like VirtualQuery and be able to see the parameters being passed to a certain process. I've tried using the user-defined/system-defined callbacks but there are apparently only like 4 functions you can "hook" on (GetSyste...