Driver Problems? Questions? Issues?
Put OSR's experience to work for you! Contact us for assistance with:
  • Creating the right design for your requirements
  • Reviewing your existing driver code
  • Analyzing driver reliability/performance issues
  • Custom training mixed with consulting and focused directly on your specific areas of interest/concern.
Check us out. OSR, the Windows driver experts.

OSR Seminars


Go Back   OSR Online Lists > ntdev
Welcome, Guest
You must login to post to this list
  Message 1 of 3  
10 Jan 18 03:20
weilin jiang
xxxxxx@foxmail.com
Join Date: 30 Nov 2017
Posts To This List: 17
EasyHook problem

I create a .exe resolution and use EasyHook to hook user-mode diaplay driver's OpenAdapter function . After hooking function successfully, I restart the display adapter but my hook function does not be called . The two function below is called in my project, LhInstallHook LhSetInclusiveACL What is wrong ? thanks for your reply .
  Message 2 of 3  
10 Jan 18 08:44
Iolanda Milani
xxxxxx@gmail.com
Join Date: 31 Dec 2017
Posts To This List: 17
EasyHook problem

EasyHook is for easily setting hooks but this doesn't mean you should use it without understanding how API hooking works. I recommend you study API hooking without using libraries like these and then go back to them afterwards because a proper understanding on how they are implemented will help you greatly. About your problem, you are saying that you are using EasyHook to hook a user-mode API, but are then restarting the target which you had hooked. This will cause the hook to vanish, because the virtual memory for the target is reset due to the restart. You'll need to re-hook the target on each instance as it is being started up. You should let us know what you're actually trying to achieve here, because hooking a display adapter sounds like a really silly thing to do. There could be a much better way to do what you may be trying to do, or a better idea to accomplish the end result. If you don't know what you are doing, which is evident, then using hooking techniques (especially on sensitive targets) can cause many issues.
  Message 3 of 3  
11 Jan 18 03:55
weilin jiang
xxxxxx@foxmail.com
Join Date: 30 Nov 2017
Posts To This List: 17
EasyHook problem

Thanks for your reply. I think I had understand how to hook and I code a project inject dll to another process successfully. I understand why hooking to OpenAdapter is failed yet. xxxxx@foxmail.com From: xxxxx@gmail.com Date: 2018-01-10 21:43 To: Windows System Software Devs Interest List Subject: RE:[ntdev] EasyHook problem EasyHook is for easily setting hooks but this doesn't mean you should use it without understanding how API hooking works. I recommend you study API hooking without using libraries like these and then go back to them afterwards because a proper understanding on how they are implemented will help you greatly. About your problem, you are saying that you are using EasyHook to hook a user-mode API, but are then restarting the target which you had hooked. This will cause the hook to vanish, because the virtual memory for the target is reset due to the restart. You'll need to re-hook the target on each instance as it is being started up. You should let us know what you're actually trying to achieve here, because hooking a display adapter sounds like a really silly thing to do. There could be a much better way to do what you may be trying to do, or a better idea to accomplish the end result. If you don't know what you are doing, which is evident, then using hooking techniques (especially on sensitive targets) can cause many issues. --- NTDEV is sponsored by OSR Visit the list online at: <http://www.osronline.com/showlists.cfm?list=ntdev> MONTHLY seminars on crash dump analysis, WDF, Windows internals and software drivers! Details at <http://www.osr.com/seminars> To unsubscribe, visit the List Server section of OSR Online at <http://www.osronline.com/page.cfm?name=ListServer>
Posting Rules  
You may not post new threads
You may not post replies
You may not post attachments
You must login to OSR Online AND be a member of the ntdev list to be able to post.

All times are GMT -5. The time now is 02:37.


Copyright ©2015, OSR Open Systems Resources, Inc.
Based on vBulletin Copyright ©2000 - 2005, Jelsoft Enterprises Ltd.
Modified under license