Hi all,
I’d like to see a list of win32 functions that are called from programs like
“xcopy x:\dir\file.ext c:\temp /y”. I tried apimon.exe from platform SDK,
but it doesn’t allow to specify arguments. I can write a wrapper application
that executes my target program, but maybe something like this already
exists. Do you know of any such program for viewing win32 calls?
Joze
If you want to see the Native API calls you could have a look at strace
here http://razor.bindview.com/tools/files/strace-0.1.zip If you want the
Win32 calls then as far as I know the standard method is IAT hook which I
have used with some success, a quick google leads you here
http://www.internals.com/articles/apispy/apispy.htm
Not a lot to do with nt file system devlopment but I hope it helps.
Cheers, Lyndon