hello,
If any body know about GDI System Call Hooking , plz post reply
Sify Mail - now with Anti-virus protection powered by Trend Micro, USA.
Know more at http://mail.sify.com
Sify Power mail- a Premium Service from Sify Mail!
know more at http://mail.sify.com
Well,
It seems like U want to fight with fire…
There are two books (NT undoc, and win2k Undoc) with NT native services API
book to get you started on it…
I’ve done quite a bit of it, not particularly I like it, but necessity, and
I found it very
very interesting as well as frustrating…
For NT 4.0 it is fairly straight forward, having handy ref. of those books.
For Win 2k,
you will have to play the trick of disabling
page protection of IA-32 bit arch, and to know where the pagetables are
that you can find from Inside Windows 2000 book, and ntndis.com site ). For
XP, the win2ksys seems
like pageable, so it has to be paged in or to make sure it is resident,
before trying to replace the vectored addresses…
Finally not much help you would get, since it is very very very … tricky
and discouged idea, sometime alternatives might be offered by the Big guns
hanging out here…
I particluarly dont mind to scrap these out, as soon as I find altenative
documented ideas.
-prokash
-----Original Message-----
From: xxxxx@lists.osr.com
[mailto:xxxxx@lists.osr.com]On Behalf Of thomas mathew
Sent: Monday, May 19, 2003 11:18 PM
To: NT Developers Interest List
Subject: [ntdev] GDI System Call Hooking?
hello,
If any body know about GDI System Call Hooking , plz post reply
Sify Mail - now with Anti-virus protection powered by Trend Micro, USA.
Know more at http://mail.sify.com
Sify Power mail- a Premium Service from Sify Mail!
know more at http://mail.sify.com
You are currently subscribed to ntdev as: xxxxx@vormetric.com
To unsubscribe send a blank email to xxxxx@lists.osr.com
Well, You forget most valuable resource available for GDI call hooking-
Windows Graphics Programming: Win32 GDI and DirectDraw (With CD-ROM)
by Feng Yuan
http://www.amazon.com/exec/obidos/tg/detail/-/0130869856/102-1701118-4108963
?vi=glance
Subodh
----- Original Message -----
From: “Prokash Sinha”
To: “NT Developers Interest List”
Sent: Tuesday, May 20, 2003 10:36 PM
Subject: [ntdev] RE: GDI System Call Hooking?
> Well,
>
> It seems like U want to fight with fire…
> There are two books (NT undoc, and win2k Undoc) with NT native services
API
> book to get you started on it…
>
> I’ve done quite a bit of it, not particularly I like it, but necessity,
and
> I found it very
> very interesting as well as frustrating…
>
> For NT 4.0 it is fairly straight forward, having handy ref. of those
books.
> For Win 2k,
> you will have to play the trick of disabling
> page protection of IA-32 bit arch, and to know where the pagetables are
> that you can find from Inside Windows 2000 book, and ntndis.com site ).
For
> XP, the win2ksys seems
> like pageable, so it has to be paged in or to make sure it is resident,
> before trying to replace the vectored addresses…
>
> Finally not much help you would get, since it is very very very … tricky
> and discouged idea, sometime alternatives might be offered by the Big guns
> hanging out here…
>
> I particluarly dont mind to scrap these out, as soon as I find altenative
> documented ideas.
>
> -prokash
>
> -----Original Message-----
> From: xxxxx@lists.osr.com
> [mailto:xxxxx@lists.osr.com]On Behalf Of thomas mathew
> Sent: Monday, May 19, 2003 11:18 PM
> To: NT Developers Interest List
> Subject: [ntdev] GDI System Call Hooking?
>
>
> hello,
> If any body know about GDI System Call Hooking , plz post reply
>
>
>
> -------------------------------------------------
> Sify Mail - now with Anti-virus protection powered by Trend Micro, USA.
> Know more at http://mail.sify.com
>
> Sify Power mail- a Premium Service from Sify Mail!
> know more at http://mail.sify.com
>
>
> —
> You are currently subscribed to ntdev as: xxxxx@vormetric.com
> To unsubscribe send a blank email to xxxxx@lists.osr.com
>
>
>
> —
> You are currently subscribed to ntdev as: xxxxx@softhome.net
> To unsubscribe send a blank email to xxxxx@lists.osr.com