An API detour question
Posted on 2016-09-13
When I am load a DLL library in my process, is the shared DLL code shared same memory with other process that us the same DLL?
Here is the use case,
When I detour and API, say "CreateProcess" from "kernel32.dll", will it intercept the function calls only from this process or it can come from all process?
Thank you for any answer.