https://stackoverflow.com/questions/15963507
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
RussianFirst you must get address of SSDT Shadow. Next get all handles in the system and iterate over all handles to get PID of csrss.exe. Attach to csrss.exe process, get system calls indexes (for example from this - WIN32K.sys system call table and replace original system functions with your functions. I may post example, but I dont have Windows 7 machine to test.
usersendinput and userpostmessage hooking
Question
I want to hook the usersendinput and userpostmessage hooking in windows 7.It didnt export by SSDT.So I am unable to accomplish this via SSDT hooking.I want to write my own api handler for these api .How can I accomplish this?SSDT shadow hooking is possible or any other way to hook this?
Solution
Licensed under: CC-BY-SA with attribution
Not affiliated with StackOverflow
