Can someone give me a tip how to hook ex ExitProcess ?? Can i do this in _asm ?
Exit Process...
03/04/2014 18:12
szymek111#1
03/04/2014 18:20
qkuh#2
MS Detours
03/04/2014 19:42
szymek111#3
But i want to make it in dll .
03/04/2014 21:06
Padmak#4
What do you want to approach with your hook? When ExitProcess is called the process has already released all of its handles and resources, so you cannot prevent a process from closing with only hooking ExitProcess
Padmak
Padmak
03/04/2014 22:05
MrSm!th#5
Still MS Detours.Quote:
But i want to make it in dll .
03/05/2014 07:18
szymek111#6
I want to prevent olly from being detected by xtrap.
03/05/2014 07:48
Tension#7
That wont work with hooking ExitProcess.
You have to create a Bypass for that.
You have to create a Bypass for that.
03/05/2014 10:25
MrSm!th#8
Well, it helps analyzing the protected process statically (as the others said, it won't be able to run anymore, but stays frozen), but you have to hook more possible exit points for that (TerminateProcess for example).
And I'm damn sure you won't be able to attach olly anyway, because it also restricts access to the process.
And I'm damn sure you won't be able to attach olly anyway, because it also restricts access to the process.
03/05/2014 15:01
szymek111#9
I know how to make xtrrap bypass i have xtrap driver static adress and also i need to hook K32EnumProcesses .
03/05/2014 16:51
MrSm!th#10
You shouln't have any problems then.
03/06/2014 17:08
szymek111#11
My problem is that i don't know how to hook them . I need a example . Because i never hooked winapi .
03/06/2014 17:28
Padmak#12
What about "MS Detours" do you not get?
Padmak
Padmak
03/06/2014 17:55
szymek111#13
I get.. ..
03/06/2014 19:04
MrSm!th#14
There are dozens of tutorials on the internet, even on this board.
03/06/2014 23:50
Brendan Jordan#15
This for example :pQuote:
|
|