|
So, I have found a ancien post and I found a part of code, but when I write this line :
IDirectInputVtbl OldIDirectInputVtbl;
I have 3 errors :
D:\Dev\Hook_Direct_Input\Hook_GetDeviceData\TestDLL\dllmain.cpp(12) : error C2146: syntax error : missing ';' before identifier 'OldIDirectInputVtbl'
D:\Dev\Hook_Direct_Input\Hook_GetDeviceData\TestDLL\dllmain.cpp(12) : error C2501: 'IDirectInputAVtbl' : missing storage-class or type specifiers
D:\Dev\Hook_Direct_Input\Hook_GetDeviceData\TestDLL\dllmain.cpp(12) : fatal error C1004: unexpected end of file found
And I don't know how I can do ???????
|
|
|
|
|
So I juste forgot #define CINTERFACE.
know I haven't errors.
But I have a question :
If I want to intercept GetDeviceData()
I need configure ApiHiJack to Hook CreateDevice ?
And after I put the part of code to hook the new method ?
@+
P.S. : ApiHiJack is very useful and have more & more possibilities.
It's very interesting.
Great Software !
|
|
|
|
|
I just see I have a big problem :
This is the action to perform a getdevice data :
run function DirectInput8Create(...) :
This function create a DirectInput8 object
This object containt method CreateDevice(....)
Run method CreateDevice(...)
This function create a DirectInputDevice8 object
and this object contain method GetDeviceData(...)
So how I could hook the GetDeviceData(...) ?????
Need I to hook each function & method ?
|
|
|
|
|
Is anybody help me modify the ApiHijack project let me hijack the directdraw's
"drawtext" function?
for example, if DX Game call DrawText to show "Hello",, My program can change
the text to "Aloha"
many many many thanks!
|
|
|
|
|
You could do it with standard DirectDraw methods, but I doubt many games really use DrawText. Most use their own text drawing routines that create polygons from a texture map.
-Wade
|
|
|
|
|
Hi.
i want to hook "CreateProcess" API globally.
for example, some application calls CreateProcess
to open an text file with "Notepad.exe",
my application intercept it and open it with another
editor.
Is it possible to use the sample code?
thanks.
|
|
|
|
|
I tried by capturing text which goes for printer.
It crashes afterprinting 10 documents.
It is working fine in WinNT.
What might be the problem in win98.
Ganesh
|
|
|
|
|
I have been experimenting with the APIhijack workspace alot. Its a reliable way of intercepting code from a post compiled program. I've done a few major mods to APIhijack and as long as you write proper clean code for it, testlaucher.exe will never cause the hijacked target EXE to crash.
While traditional disassemblers allow you to do debugging, and 'patch' certain
lines of assembly code of an EXE, APIhijack allows you to replace entire DLL imports with new custom functions written in C++. The cracker therefore doesn't need to worry about what language an EXE is written in.
W32dasm is used by crackers who want to do things like remove
shareware splash screens, disable advertisement windows, trigger program registration processes and bypass screens which ask for original authentic CDs. APIhijack has the potential to do all these things but in a much more stable way.
I reckon API hijacking is a more feasible way of cracking a program. Hooks don't directly modify the code of the EXE, they use the features offered by the kernel to re-route them. APIhijack therefore has more leverage as a cracking tool. Instead of changing the EXE itself, you change the kernel which 'feeds' the EXE - an easier and more stable way of cracking. 
|
|
|
|
|
Hi
I tried to hook RegQueryValueExA on variuos programs.
There were no problems hooking on programs like winamp which are written in c++.
But when I try to hook on programs written in delphi I am not able to hook RegQueryValueExA and other APIs
What's wrong with Delphi apps? Do I need to hook LoadLibrary instead?
Any help is greatly appreciated
modified 12-Sep-18 21:01pm.
|
|
|
|
|
Update:
I can't hook ANY api call in delphi apps, even not LoadLibrary, although it works fine on VC++ apps
I took a look at the delphi executables with "Dependency Walker".
I found out that even Dependency Walker can't find out the address of all the functions used by delhi apps.
It always only shows the value:
[Ordinal] [Hint] [Function] [Entry Point]
N/A 0(0x0000) "ANY function" Not Bound
What's wrong with delphi apps?
modified 12-Sep-18 21:01pm.
|
|
|
|
|
Delphi exports and imports fine. You probably need to look at
the delphi newsgroups to figure out your problem.
|
|
|
|
|
you know when u define a function from a dll....
well how do i find the number of arguments and what type and result type from any dll?!?!
any help would be great even if little
|
|
|
|
|
I'm assuming you don't have access to a header file for the DLL. Without that it's hard to find out what the parameters are, but there a couple things that may help:
- Some DLLs put @12 or whatever at the end of the exported function name, like InitThisDll@12. The 12 is the total size in bytes of all the arguments.
- Failing that you have to look at the disassembly for the DLL function, or at some code that calls it and try to work out the parameters yourself.
-Wade
|
|
|
|
|
Use dumpbin or dependency walker and find the mangled name. Then use undname.exe to find the whole declaration. NOTE: This assumesthe compiler is VC++
|
|
|
|
|
Try this:
http://www.research.microsoft.com/sn/detours/
|
|
|
|
|
Cool, Microsoft releases what is essentially a virus toolkit
-Wade
|
|
|
|
|
If you read the readme file, this library essentially does NOT work on Win9x systems!
(I have been trying to figure out a way to capture the text right beneath the mouse cursor, one way to do this without resorting to OCR is (I guess?), install a mouse hook, get the HWND, post a UpdateWindow message to this HWND, and hook the function calls like TextOut, DrawText etc, and grab the text. BUT I just don't know how to hook these functions! Anyone has a better idea of how to grab the text beneath the cursor (on any window)? )
|
|
|
|
|
Thats an awesome idea actually...I never even thought of that...and here this whole time I thought it was impossible...
The word of the day is legs, let's go back to my house and spread the word 
|
|
|
|
|
The source (dllmain.cpp) has these prototypes:
// Function pointer types.
typedef HRESULT (WINAPI *DirectDrawCreateEx_Type)( GUID FAR *lpGUID, LPVOID *lplpDD, REFIID iid, IUnknown FAR *pUnkOuter );
// Function prototypes.
HRESULT WINAPI MyDirectDrawCreateEx( GUID FAR * lpGuid, LPVOID *lplpDD, REFIID iid,IUnknown FAR *pUnkOuter );
How do I write these prototype if the original import library used:
extern "C" unsigned char Foo(parameters);
Thanks...
|
|
|
|
|
Check any reference on C function pointers for the information.
typedef unsigned char (*Foo_Type)(parameters);
unsigned char MyFoo(parameters);
-Wade
|
|
|
|
|
1.execute the TestLauncher.exe and bend.exe,then DirectDrawCreateEx will be hooked
2.remove the hook
3.on the File menu of bend.exe,click Change Device and change the device.it cause the bend.exe executing DirectDrawCreateEx().
then an error has occurred.
why?
|
|
|
|
|
That's because when you hit OK to remove the hook, it unloads the DLL, however the IAT in the EXE that is running is still referencing the DLL.
My suggestion for handling this safely would be to have the TestLauncher project run bend.exe as a child process, so that TestLauncher can't exit until bend.exe has.
-Wade
|
|
|
|
|
yes,but i need a global hook.
for example,i want to monitor the registry,i want to know which applications are accessing the registry.so your suggestion may not do that.
can i change IAT to referencing the original?
thanks
|
|
|
|
|
I think you may need a different method for monitoring access to the registry. Have you checked out regmon from www.sysinternals.com, to see how they do it?
-Wade
|
|
|
|
|
Is there a way to hook a non-imported function?
The function IS exported, but when the exe is dissassembled, the function is not being imported. If I write a wrapper for the dll, the function is getting called.
Is there an easy fix?
Wyvern
|
|
|
|
General 
News 
Suggestion 
Question 
Bug 
Answer 
Joke 
Praise 
Rant 
Admin 
Submit an article or tip
