Does anyone know tools like SpyStudio to hook processes? The features I would like to have are:
- log function calls on other processes
- GUI
- scriptable
- opensource
I already looked at some tools like:
but none really fully satisfies me.
+1
A:
It likely uses the debugging API and places debug hooks at key points in the application to to trap events. You may even be able to do what you want using ollydbg.
EDIT: I just looked at the site and saw the demonstration videos and I would say that they almost certainly do this through the debugging API. They likely place breakpoints in the target at the desired function entry points. When a trap event fires, it looks like they use an RPC call to notify the user of their API and allow them to look at what happened and potentially modify some things. Sending back what to do next also in an RPC call. A nice design, but just a glorified debugger.
Evan Teran
2008-11-18 16:30:55
+1
A:
It's not Open Source, but other than that OllyDbg might be what you are looking for. Other useful tools and information can be found on www.openrce.org.
divideandconquer.se
2008-11-18 16:32:12
I already knew OllyDbg, but never really used it, and never though I could do this with.
Jazz
2008-11-18 17:14:35
+1
A:
You can look at Detours library from Microsoft Research. Its a generic API Hooking library.
braindead
2008-11-18 16:56:01
+3
A:
The primary usage of WinAPIOverride32 is monitoring/logging function calls of other process. It also has plug-in framework, so you could write your own hook handler. And it is open source (GPL).
kcwu
2009-05-17 05:51:41
+1
A:
The best api monitor tool (Auto Debug Profressional) can help you to do this. It can monitor all api calls.
susanwan
2009-09-21 08:12:21