搜索资源列表
API
- vb拦截系统的api钩子演示代码。可以枚举模块,和模块中的所有函数。-vb interceptor system api hook demo code. Can enumerate the modules, and all the functions in the module.
IPShujubaoGuolv
- 数据包监控过滤程序含驱动源码,采用IPHook驱动器程序,在内核层用钩子回调函数(IpHookFilter)勾住系统自带的IP过滤驱动器(System32\Drivers\IpFltDrv.sys),从而返回过滤驱动器传输的所有IP包数据。-Packet monitoring filter program containing driver source to using IPHook drive program the the kernel layer with a hook callback
asmAppHook
- api钩子,采用内核级钩子,全局勾取函数,vs2005编过,用到汇编代码-api hooks, kernel-level hooks, the global hook go function, vs2005 compiled over,use asm language
VB-SockHook
- 使用消息钩子注入,然后拦截Sock相关函数封包-failed to translate
r3callr0
- 从应用层R3调用驱动级R0的ZW系列函数的代码,可以避开一些三层钩子。-From the application layer calls the driver stage of R0 R3 ZW series function code, you can avoid some of the three hooks.
HookAPI1.7
- HookAPI开发包(Win32 API函数截拦),非常不错的HookAPI开发包,让编写钩子变得很简单
FileSystemW-VB6
- 在文件系统中给Dir,FileLen等函数加了Unicode支持,另外通过API钩子实现Open语句支持Unicode文件名,经过了多次修复-In the file system to the Dir, FileLen other functions added Unicode support, in addition to through the API hook to achieve the Open statement supports Unicode file names, after
KEYBOARD
- 键盘应用。初学开发者必须要掌握的C函数,键盘钩子等应用程序。-Keyboard application. Novice developers need to master the C function, the keyboard hook, etc. applications.
Fool-Ghost
- 整人小精灵,小程序,可以学习键盘钩子等系统函数调用,很实用,很底层-Whole person elf, applets, and other systems can learn keyboard hook function call, very practical, very bottom
cap2013
- 6 调用的函数被拦截进入跟踪程序:设置好了的跟踪程序截获了该次调用。 8 退出跟踪程序,返回到鼠标钩子MouseProc;-6 function call is intercepted enter tracking program: set up a tracking program intercepts the invocation. 8 exit tracking program and return to the mouse hook MouseProc
HOOK-UUO
- 简单的 钩子HOOK函数 截获 键盘输入和鼠标动作-hook about such as mouse
callbacktest
- 回调函数的实例,实现了对键盘输入等hib设备的输入进行钩子截获-Examples of the callback function, realize the keyboard input of Hib equipment such as the input to the hook intercepted
KeyboardHook
- 原理:通过SetWindowsHookEx函数将DLL注入到进程的地址空间中,线程dwThreadId获取到的键盘消息会实现被钩子拦截-Principle: The SetWindowsHookEx function DLL is injected into the process s address space, the thread dwThreadId get to the keyboard hook to intercept messages will be achieved
FileSystemW-VB6Unicode
- 如题,在文件系统中给Dir,FileLen等函数加了Unicode支持,另外通过API钩子实现Open语句支持Unicode文件名,经过了多次修复,发现一个问题,Name xx As xx语句没有Unicode化,还有另一个函数不支持Unicode:Shell,在以后的修正工作中会添加这些修复-As stated in the file system to Dir, FileLen added Unicode support and other functions, in addition to
delphishellai
- 该程序虽然只用了几个shellai函数,但是它涉及到了在Delphi中对DLL的引用、钩子实现、对指示区的操作、用户定义消息的处理、文件的读写等比较重要的内容,我相信这篇文章能对许多Delphi的初学者有所帮助。-Although the program used several shellai function, but it involves reference to the DLL in Delphi, the achievement of the hook, to indicate th
Hook
- 实现了Hook函数钩子基本功能,可动态显示键盘输出,并保存在文本中, 并通过邮件模块发送出去-Hook function hook implements the basic functions of the keyboard output can be dynamically displayed and saved in text, and send it through the mail module
gouzi08-11-26
- 可以用函数EnableKBHook来安装/卸除键盘钩子。-EnableKBHook function can be used to install/removing the keyboard hook.
SSDT
- SSDT钩子恢复,可以检测SSDT函数是否被挂钩,并可以恢复-SSDT hook recovery, you can detect whether hook SSDT function, and can be restored
SDT_UnHook_Code
- 通过读取ntoskrnl.exe文件的导出函数API相对虚拟地址,找到ntoskrnl.exe在内存中的基地址,计算各个API真正的起始地址,比较SSDT表中对应的API地址,不同则去掉SSDT钩子的驱动代码-First,the driver code acquires the RVA of APIs the export table of ntoskrnl.exe.Second,program acquires the base address of ntoskrnl.exe loaded
delphi-hook-library
- wr960204武稀松.2012.2 主页 http://www.raysoftware.cn 通用Hook库. 支持X86和X64. Get 使用了开源的BeaEngine反汇编引擎.BeaEngine的好处是可以用BCB编译成OMF格式的Obj, 被链接进Delphi的DCU和目标文件中.不需要额外带DLL. BeaEngin引擎 http://www.beaengine.org/ 限制: 1.不能Hook代码大小小于