Win32 Programming - Hook ReadFile(), WriteFile()...?

larsenmtl · October 12, 2006, 6:28pm

Does anyone have experience with hooking the above functions? After searching the only examples I can find involve injecting a dll into every running process to intercept these calls. This seems very problematic and down right nasty.

Specifically, I’m looking to monitor a directory, intercept any read or write to file and perform an action before the read or write can proceed.

Any ideas?

Thanks,

LarsenMTL

si_blakely · October 12, 2006, 8:56pm

www.sysinternals.com are the experts on this sort of thing, and have articles and source code and links/references. They tend to create a runtime driver to hook api’s to, like regmon and filemon.

I’m sure I got some API hook example code from them some time ago (like 6 years now).

Anyhow - look there.

Simon

larsenmtl · October 13, 2006, 2:13pm

Thanks Simon, tons of information there.

Topic		Replies	Views
Override Windows API calls? Factual Questions	14	5347	April 7, 2005
WinXP programming question Factual Questions	4	1053	November 18, 2009
Anyone out there write Windows applications? Miscellaneous and Personal Stuff I Must Share	4	735	February 23, 2003
Windows scripting: controlling another gui program Factual Questions	12	1408	July 17, 2004
Two q's on Windows file-handling. Factual Questions	1	837	March 6, 2016

Win32 Programming - Hook ReadFile(), WriteFile()...?

Related topics