Hi,
I want to hook APIs of a .sys file.
Is it possible using HookAPI function?
Or is there any other function to do this?
Can we hook APIs of .sys file?
Re: Can we hook APIs of .sys file?
You mean you want to hook a driver in driver land? That is not possible with madCodeHook. Driver land is a totally different thing compared to user land. Also, Microsoft has strictly forbidden API hooking in driver land in 64bit OSs. See here:
http://en.wikipedia.org/wiki/Kernel_Patch_Protection
http://en.wikipedia.org/wiki/Kernel_Patch_Protection
Re: Can we hook APIs of .sys file?
Thanks for this useful information.