The example explaining
Having realized three examples in API, each example is to intercept and capture function to transfer, and write the daily record to c: \hookapi.log, has not carried on other operation
Intercept and capture the example of Socket function
Having demonstrated in this example that intercepts and capture Windows 32 persons of Socket API function, DLL file intercepted and capture is WSOCK32.dll, the function intercepted and capture has socket, connect,recv,send.
Mysocket function: Just write the daily record .
Whether last socket user() function and not directly it last pieces of socket value,thus can't realize in not transfering there aren't false network at socket function all, Cheat the application program.
Myconnect function: Write the daily record . Users can revise myconnect function the followingly here : Whether it transfer connect() and can't return and succeed directly, cheat by application program; Connect another host computer's address; Another port of connect.
Myrecv function: Write the daily record . Users can revise myrecv function the followingly here : Whether it transfer recv() and can't last one's own buf directly function, cheat application program of; Transfer recv, analyse that the data received are chartered in record; Transfer recv, decipher the data to wrap up ; Transfer recv, use the communication again of send and another end; Wait a moment.
Mysend function: Write the daily record . Users can revise mysend function the followingly here : Whether it transfer send() and can't return and succeed directly function, cheat by application program; Analyse that the data that will be sent are chartered in record; Encrypt the data to wrap up ( use another buffer), then transfer send and will be encrypted and be chartered and be sent out ; Wait a moment.
But can not obtain the content that all systems deposit and withdraw to the network to intercept and capture standard Socket API. |
