Jump to content
Strawberry Orange Banana Lime Leaf Slate Sky Blueberry Grape Watermelon Chocolate Marble
Strawberry Orange Banana Lime Leaf Slate Sky Blueberry Grape Watermelon Chocolate Marble

MSFN is made available via donations, subscriptions and advertising revenue. The use of ad-blocking software hurts the site. Please disable ad-blocking software or set an exception for MSFN. Alternatively, register and become a site sponsor/subscriber and ads will be disabled automatically. 


Sign in to follow this  
Dibya

API redirection on Windows XP

Recommended Posts

Hi everyone,

Is their any way to redirect api in XP?

For example  in a configuration file I mention c:\programfiles\Filezilla , then all api of kernel32 will be redirected to c:\wrappers\kernelex.dll

Share this post


Link to post
Share on other sites

I told you that once, way back when... the most perfect (and difficult) way to do it is to locate kernel32, ntdll, hal and if necessary ntkrnl in-memory and hook 'em there. It has the great advantage the simply by removing the module responsible for doing that restores the system to a plain-vanilla state. This should be done early during boot, preferably at the end of the 1st phase or  (more difficult still) at the beginning of the 2nd phase. To do so requires much more savy programming than I ever attained, but I'm positive it's possible to be done. If you follow Alex Ionescu's twitter, you're sure to find some people able to do that. He himself obvously is one of those, but I doubt he'd be much interested in that, now that he became world-famous. But his twitter is a good place to meet others of like ability, and make some interesting friends. Sorry I cannot myself be of more help.

  • Like 1

Share this post


Link to post
Share on other sites

Alright I will check them out.

  • Like 2

Share this post


Link to post
Share on other sites
10 hours ago, Dibya said:

Extended kernel is cancelled for better one core API.

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this  

  • Recently Browsing   0 members

    No registered users viewing this page.

×