-
-
[推荐]WinAPIOverride32 V2.0.1.0[April 24 2006]
-
发表于: 2006-5-6 15:50
-
Description
This software allows you to monitor and/or modify any function of a process. This can be done for any calling convention (stdcall or cdecl), and for API functions or executable internal functions.
It allows too to call process function getting result and output parameters. This code is will only work on 32 bits applications and OS.
A 64 bits convertion should be quite easy, but still I don't have 64bit computer, OS and dev platform I won't do it :-)
Main difference between over API hooker are
- we can focalized on ONE process so we are not disturb by over applications call
- we can hook both calling convention stdcall or cdecl
- we can hook functions inside the target process not only API
- we can easely override any API or any process internal function
- All is is done like modules : that means you can load/unload hook or override independently for any function
.............................................................................................................................
History
Version 2.0.1.0 April 24 2006
- Memory protection removal bug removed : PAGE_EXECUTE and PAGE_EXECUTE_READ protection flags weren't removed in previous versions. The effect was a memory write fault, crashing host process, when we tried to hook or monitor a func
Version 2.0.0.0 April 11 2006
- Can hook multiple processes in same interface
- Can hook all created processes (filters can be defined)
- Better process hooking at startup handling
- Unicode conversion
- New InNoRet hooking type: it allows to send log to WinApioverride before the function is called, so even function crash we get logs
- Monitoring files parsing improved: now you can let the return type of the function; parameter keywords const, struct, far, in, out, inout are ignored; pointer detection troubles solved (char *psz type will now be recognize as char*)
- Some memory leaks removed
- The injected library is staticaly linked only with kernel32 (user32.dll will be loaded only on errors). So hooking can be done sooner
Version 1.0.0.1 January 29 2006
- Some insignificant bug correction
- Add of some Api definitions in monitoring files
- manifest resource added to exe
Version 1.0 November 14 2005
Initial version.
This software allows you to monitor and/or modify any function of a process. This can be done for any calling convention (stdcall or cdecl), and for API functions or executable internal functions.
It allows too to call process function getting result and output parameters. This code is will only work on 32 bits applications and OS.
A 64 bits convertion should be quite easy, but still I don't have 64bit computer, OS and dev platform I won't do it :-)
Main difference between over API hooker are
- we can focalized on ONE process so we are not disturb by over applications call
- we can hook both calling convention stdcall or cdecl
- we can hook functions inside the target process not only API
- we can easely override any API or any process internal function
- All is is done like modules : that means you can load/unload hook or override independently for any function
.............................................................................................................................
History
Version 2.0.1.0 April 24 2006
- Memory protection removal bug removed : PAGE_EXECUTE and PAGE_EXECUTE_READ protection flags weren't removed in previous versions. The effect was a memory write fault, crashing host process, when we tried to hook or monitor a func
Version 2.0.0.0 April 11 2006
- Can hook multiple processes in same interface
- Can hook all created processes (filters can be defined)
- Better process hooking at startup handling
- Unicode conversion
- New InNoRet hooking type: it allows to send log to WinApioverride before the function is called, so even function crash we get logs
- Monitoring files parsing improved: now you can let the return type of the function; parameter keywords const, struct, far, in, out, inout are ignored; pointer detection troubles solved (char *psz type will now be recognize as char*)
- Some memory leaks removed
- The injected library is staticaly linked only with kernel32 (user32.dll will be loaded only on errors). So hooking can be done sooner
Version 1.0.0.1 January 29 2006
- Some insignificant bug correction
- Add of some Api definitions in monitoring files
- manifest resource added to exe
Version 1.0 November 14 2005
Initial version.
[注意]传递专业知识、拓宽行业人脉——看雪讲师团队等你加入!
谢谢。
