Microsoft Edge injection
Posted: Fri Jul 21, 2017 3:58 pm
Hello,
I'm using madCodeHook (v3.1.16) to inject a hook DLL which intercepts function calls to the "send" and "WSASend" functions of the Windows Sockets 2 API (ws2_32.dll) to do some sort of basic internet filtering and it always worked well with the common internet browsers. It even worked with Microsoft Edge until Microsoft released the Windows 10 Creator's Update. I had to put some effort into getting the injection to work, but it seems like Microsoft Edge doesn't use the mentioned functions anymore. I gave a few API Monitor tools a try to find out which APIs and functions Edge uses but unlike with madCodeHook any injection attempts were unsuccessful due to the hardened security that comes with Edge. Do you know if Microsoft replaced these winsock functions with another new API or am I confronted with another security layer problem? Is there any way to work around this issue?
Thank you very much.
I'm using madCodeHook (v3.1.16) to inject a hook DLL which intercepts function calls to the "send" and "WSASend" functions of the Windows Sockets 2 API (ws2_32.dll) to do some sort of basic internet filtering and it always worked well with the common internet browsers. It even worked with Microsoft Edge until Microsoft released the Windows 10 Creator's Update. I had to put some effort into getting the injection to work, but it seems like Microsoft Edge doesn't use the mentioned functions anymore. I gave a few API Monitor tools a try to find out which APIs and functions Edge uses but unlike with madCodeHook any injection attempts were unsuccessful due to the hardened security that comes with Edge. Do you know if Microsoft replaced these winsock functions with another new API or am I confronted with another security layer problem? Is there any way to work around this issue?
Thank you very much.