Can we hook APIs of .sys file?

contains all delphi packages mentioned below
Post Reply
manutai
Posts: 85
Joined: Sun Aug 03, 2008 1:40 am

Can we hook APIs of .sys file?

Post by manutai »

Hi,

I want to hook APIs of a .sys file.
Is it possible using HookAPI function?
Or is there any other function to do this?
madshi
Site Admin
Posts: 10753
Joined: Sun Mar 21, 2004 5:25 pm

Re: Can we hook APIs of .sys file?

Post by madshi »

You mean you want to hook a driver in driver land? That is not possible with madCodeHook. Driver land is a totally different thing compared to user land. Also, Microsoft has strictly forbidden API hooking in driver land in 64bit OSs. See here:

http://en.wikipedia.org/wiki/Kernel_Patch_Protection
manutai
Posts: 85
Joined: Sun Aug 03, 2008 1:40 am

Re: Can we hook APIs of .sys file?

Post by manutai »

Thanks for this useful information.
Post Reply