Cheat Engine Forum Index Cheat Engine
The Official Site of Cheat Engine
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 


NtCreateFileHook

 
Post new topic   Reply to topic    Cheat Engine Forum Index -> General programming -> General programming+
View previous topic :: View next topic  
Author Message
HomerSexual
Grandmaster Cheater Supreme
Reputation: 5

Joined: 03 Feb 2007
Posts: 1657
PostPosted: Thu Dec 11, 2008 4:19 pm    Post subject: NtCreateFileHook Reply with quote
A few people wanted to see a kernel mode hook, here it is.

Just says when NtCreateFile is called and by what process and on what file/object

If NtCreateFile is already hooked, the program will not try to put it's hook in place as this causes a BSOD. McAfee and other AV's usually hook NTCF. It is impossible to hook over it as they will detect a virus and then just rehook.

The Extension 'rar' was deactivated by an board admin, therefore this Attachment is not displayed.

_________________
Back to top
View user's profile Send private message
Noz3001
I'm a spammer
Reputation: 26

Joined: 29 May 2006
Posts: 6220
Location: /dev/null
PostPosted: Thu Dec 11, 2008 5:00 pm    Post subject: Reply with quote
Oh I do like this. I've only ever used the KeServiceDescriptorTable to hook but patching looks pretty fun =].
Back to top
View user's profile Send private message MSN Messenger
HomerSexual
Grandmaster Cheater Supreme
Reputation: 5

Joined: 03 Feb 2007
Posts: 1657
PostPosted: Thu Dec 11, 2008 7:40 pm    Post subject: Reply with quote
noz3001 wrote:
Oh I do like this. I've only ever used the KeServiceDescriptorTable to hook but patching looks pretty fun =].


I've never done the SSDT method lol. The only bad part about this patching is that if the function is already hooked, you will BSOd. Idk how it is in SSDT patching.
_________________
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Cheat Engine Forum Index -> General programming -> General programming+ All times are GMT - 6 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group

CE Wiki   IRC (#CEF)   Twitter
Third party websites