does MadC have any file systrm driver kind of thing ?

delphi package - easy access to kernel objects etc.
Post Reply
Praveen
Posts: 4
Joined: Wed Dec 10, 2008 9:45 am

does MadC have any file systrm driver kind of thing ?

Post by Praveen »

HI Guys please help me out ,My question is -Does madshi have any file system driver kind of thing for his hooking process? :confused: If yes what is the name of driver ?
madshi
Site Admin
Posts: 10753
Joined: Sun Mar 21, 2004 5:25 pm

Post by madshi »

There is a little kernel mode driver (but not a file system driver) which is responsible for injection hook dlls into newly created processes. Hooking itself doesn't need any help from drivers, only dll injection does. The name of the driver file in the current madCodeHook version is "mchInjDrv.sys". It is by default at runtime temporarily extracted to harddisk, then loaded, then deleted again.

In the upcoming madCodeHook 3.0 the driver will be stored and distributed as a separate file.
Post Reply