Search found 1 match

by c6754
Sat Feb 16, 2019 1:16 pm
Forum: Kernel-Mode Development
Topic: Stealth Hook
Replies: 0
Views: 477

Stealth Hook

How do I hook without a process seeing it in the stack?

ex. replace getprocaddress in a process without the call being seen on the stack

Do I hook the stack or use KeAttachStackProcess()?

im kinda new to kernel