Thursday, May 5, 2011

system wide api hook

What is the best way to do system wide user mode (NOT KERNEL MODE) api hook on Windows NT?

From stackoverflow

  • Normally, you'd do this using SetWindowsHookEx. This allows you to hook into all applications on the current desktop.

    There are other options, though. This CodeProject article has a lot of details on hooking mechanisms.

  • What kind of hooks? You can intercept event messages via hook apis.

Posted by Mu Cat at 6:24 AM

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)