hide processes, elevate process privileges, fake out the Windows Event Viewer so

当你在网络上抓到一些数据包，想知道这些包是哪个进程发出来的时候， 怎么办？这个小工具也许能帮一些忙。 这个工具采用的是HOOK进程的winsock API，把一些数据记录下来。-When you caught on the network data packets and would like to know which of these packages is issued to the process, how do? This small tools may be able to help some busy. This tool is used in the process of winsock HOOK API, some data is recorded.

There are numerous codes in the www to explain how to hook API functions inside a remote process. So, why creating another one ? This article is the first (I) part of a tool I m working on. This tools won t be too complex, so there is no need for a huge class hierarchy like in almost all other code, nor a hard coded assembly code. This tool is just a technical preview of what is possible to achieve, with QUICK and DIRTY "put your functions here" blocks.-There are numerous codes in the www to explain how to hook API functions inside a remote process. So, why creating another one This article is the first (I) part of a tool I m working on. This tools won t be too complex, so there is no need for a huge class hierarchy like in almost all other code, nor a hard coded assembly code. This tool is just a technical preview of what is possible to achieve, with QUICK and DIRTY "put your functions here" blocks.

一个NT下的屏幕取词程序的源代码- Under a NT screen takes the word procedure the source code

软键盘，其中包括定义的基本字母和数据的软键盘，可以自己根据需要增加按键-soft keyboard, including the definition of basic alphanumeric data and the soft keyboard can be required to increase their keys

对IE的操作 非常好-The operation of IE is very good

代码使用Visual C++ 6.0为开发工具，为了使程序小巧灵活，本人使用了WTL而不是MFC实现软件的界面，所以编译源代码需要安装WTL库。WTL库是微软发布的基于ATL构建的工具库，随源代码一起发布，可以从微软网站下载，也可以从http://www,winmsg.com/cn/orbit.htm下载。本程序使用WTL 7.1，应该也可用WTL 7.5。编译WTL程序需要安装微软的Platform SDK，最好是2002年以后的版本，如果使用Visual Studio 2002或以后的版本可不用安装Platform SDK，因为它们已经包含了Platform SDK。 在AntiHook workspace下公有四个project，AntiHook是钩子检测程序，它编译生成AntiHook.exe，运行AntiHook.exe需要和AntiHook.ini在同一个目录下，AntiHook.ini是配置文件，可以在AntiHook目录下找到。sysHook是一个全局钩子程序的例子，编译候生成sysHook.dll，用于AntiHook测试之用。HookHelper是GUI界面的sysHook.dll加载程序，编译生成HookHelper.exe，运行HookHelper.exe就可以在系统中安装sysHook.dll钩子。Helper是Console界面的sysHook.dll加载程序，编译生成Helper.exe，用于调试sysHook.dll钩子程序。-code using Visual C 6.0 for the development of tools, in order to enable small flexible procedures, I used WTL instead of the MFC software interface, the need to compile the source code for the installation of WTL. WTL repository is based on Microsoft ATL Construction of the library of tools, together with the source code release can be downloaded from

游戏内存 游戏内存 游戏内存 游戏内存 -Play Memory Game Memory Game Memory Game Memory Game Memory Game Memory Game Memory

一个使用hook钩子的程序演示，使用delhpi编写，简要的对钩子hook进行介绍-use a hook hook demonstration procedures, the use of delhpi prepared to brief introduction hook hook

game simulation program in java

vc全局钩子实现程序监控代码 一个学习hook的东东 很好的学习hook的东东欢迎大家来下载研究