Solved

yet another hook question!

Posted on 2003-12-09
17
350 Views
Last Modified: 2010-04-05
hi,
(150 points on answering this)
id like to hook into all messages particually socket messages i want to recive the socket port and data coming in this port also the program that this came from(hwnd)

or for the extra 50points(that ill add)
hook the shellexicute message and whos calling it sink it or swim it

i hope you understand my question ill keep incresing points the more intered i get starts at 50 points and goes up :D
0
Comment
Question by:mgazza
17 Comments
 
LVL 6

Accepted Solution

by:
GloomyFriar earned 68 total points
ID: 9903161
0
 
LVL 1

Author Comment

by:mgazza
ID: 9903186
ill take a look i got an exam at 11:45gmt so if i dont reply ill get back to you at an arround 12:45

incresing points^^^
0
 
LVL 1

Author Comment

by:mgazza
ID: 9905315
hi im not sure what i should be looking for on thoes pages. i just want to know how to hook messages from sockets. and ither sink or swim them maybe even take a peek at the packet to be processed.
yes you are right im looking for hackers n crackers on my ports.
0
 
LVL 1

Expert Comment

by:fanar
ID: 9908391
Listining
0
 
LVL 1

Author Comment

by:mgazza
ID: 9911225
humm can i tempt ne 1 wth points
0
 
LVL 5

Expert Comment

by:snehanshu
ID: 9911264
mgazza,
I would suggest that you post a new 20 point question titled something like
Trace/track socket messages
and paste a link to this one.
The title that would attract appropriate experts, not the points.
...Shu
0
 
LVL 1

Author Comment

by:mgazza
ID: 9911286
thanks ,
will do
0
Maximize Your Threat Intelligence Reporting

Reporting is one of the most important and least talked about aspects of a world-class threat intelligence program. Here’s how to do it right.

 
LVL 5

Assisted Solution

by:snehanshu
snehanshu earned 66 total points
ID: 9911474
mgazza,
I read this Q because it was titled a hooks question. Perhaps what you want is to monitor/spy winsock.
I searched for winsock monitor and found the following results. Perhaps you could go through them so that you get a better idea of what you want to ask.

The list:

Monitoring net traffic:
http://www.experts-exchange.com/Programming/Programming_Languages/Delphi/Q_10182533.html

Monitoring Ports:
http://www.experts-exchange.com/Programming/Programming_Languages/Delphi/Q_20551029.html

Monitor Sockets:
http://www.experts-exchange.com/Programming/Programming_Languages/Delphi/Q_20310178.html

I hope some winsock experts join in to help you: I don't know much about it.
...Snehanshu
0
 
LVL 5

Expert Comment

by:snehanshu
ID: 9911521
0
 
LVL 1

Author Comment

by:mgazza
ID: 9911572
ill look,
ta,
i found some c source code of what i want to do it looks like i dont need to hook but i dont think i can read the packets without hooking so :D
0
 
LVL 5

Expert Comment

by:snehanshu
ID: 9911601
Every where I search, I find Madshi.
So, your best bet would be that Madshi some how lands into this thread.
In the mean time, you could try to dig things up from
www.madshi.net

...Shu
P.S.
Yes, there are n number of C code examples for this.
There may be delphi ones also: it's just that I don't know where :-)
0
 
LVL 20

Assisted Solution

by:Madshi
Madshi earned 66 total points
ID: 9970528
Hi guys,

hooking APIs can be done with my package madCodeHook, which is even free - but only for non-commercial usage. One of the demos which ships with madCodeHook already hooks ShellExecute, so there you have a ready solution for that. Hooking the WinSock functions works in a similar way, you just need to change the demos a bit.

Here are the demos: http://madshi.net/MCHDemos.zip

Here's the online documentation: http://help.madshi.net/madCodeHook.htm

Regards, Madshi.
0
 
LVL 1

Author Comment

by:mgazza
ID: 9972513
humm,
Didn’t I post the URL to the download of the c code?
humm....
www.mgazzasoft.150m.com/ /Downloads/NetHook.zip
I did not code this ^

Yea I know your code madshi, its very gud but I intend to use most of my apps for commercial use, and I respect your copyright: D

My popupkiller 1.4 coded entirely by me blocks almost anything
^This is what I need to monitor shell execute for my current app has to "listen" for new processes. This is highly inefficient and an unnecessary waste of system CPU ticks

My socket manager  --- this is what I need to code I am mainly focusing on user interface for this I need some kind of code so I can listen and filter connections/packets

All I need is some understanding of how to complete the task

If this offends some people I am sorry but
I don’t like using components anyone else’s code or hooks or I don’t gain anything out of the task (learn the hard way)
Not to say there’s anything wrong with other peoples code I just prefer to re-invent the wheel (stupid me)
I like to know how any why things work.  If I don’t know this the code is useless, for it has limited capabilities, but if I know how it works then I can analyse and construct my own code with different variations for each task, which is where efficiency comes in
0
 
LVL 1

Author Comment

by:mgazza
ID: 9972531
sorry messed up the url
www.mgazzasoft.150m.com//Downloads/NetHook.zip

but the web site is mine :D lol needs an update it suxs bigtime
0
 
LVL 1

Author Comment

by:mgazza
ID: 13056675
heya!
:)
0

Featured Post

Highfive + Dolby Voice = No More Audio Complaints!

Poor audio quality is one of the top reasons people don’t use video conferencing. Get the crispest, clearest audio powered by Dolby Voice in every meeting. Highfive and Dolby Voice deliver the best video conferencing and audio experience for every meeting and every room.

Join & Write a Comment

Suggested Solutions

This article explains how to create forms/units independent of other forms/units object names in a delphi project. Have you ever created a form for user input in a Delphi project and then had the need to have that same form in a other Delphi proj…
Objective: - This article will help user in how to convert their numeric value become words. How to use 1. You can copy this code in your Unit as function 2. than you can perform your function by type this code The Code   (CODE) The Im…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

746 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now