| |
| |
| |
|
Page: 1 2 3 4 5 6 7 8 9 10 11 12
Comments:
<0> The guy's just a creepy loon who's looking for attention.
<1> ok vibes
<1> got a sample
<1> simple sample though
<0> ok
<1> ? paste
<2> Pastebin: http://www.vkarlsen.no/pastebin
<1> hehe
<1> http://www.vkarlsen.no/pastebin/default.asp?id=7418
<1> actually, the call type on the function doesn't matter
<1> does that help?
<0> We
<0> 'll see.
<1> lol
<0> Your code is pretty close to mine... a few small differences.
<0> Hopefully the problems with mine can be found in those differences.
<1> although thats hooking a simple function like ShowMessage, there isn't any reason you couldn't apply it to a cl*** function
<1> thats the hardcoded version though
<1> it also removes any hook previous in there
<3> urgh packed record :P
<3> fudge packed
<1> you shouldn't talk about your mom that way, _Russell_
<1> MSIL hooking would be interesting to do
<0> hmmm... it doesn't like the JMP [JumpFunc] idea in my code for some reason.
<1> no?
<1> that just jumps to the original code where it left off
<0> Oh, wait. Nevermind.
<0> I'm stupid... error message is for a totally different line.
<1> forgot the global?
<1> lol
<1> ok
<0> No, stupid casting mistake.
<0> Still getting an access violation when it executes. Very wierd.
<1> what line?
<0> Not yours, mine.
<1> hmmm
<1> you'll need to update the hook function, to handle the correct number of parameters
<1> and for the correct calling convention
<0> No parameters in the hook, so it doesn't matter.
<1> no no, i mean, the hook has to handle them though
<1> my hook handles only one param
<1> since ShowMessage() only takes one
<0> If it doesn't touch them, it doesn't need to mess with them.
<1> it does though
<0> Why?
<1> because i have to save EAX, because of the register calling convention, or my code would destroy it, then restore it so the original function is none the wiser
<1> if it was stdcall or cdecl, there wouldn't be any problems
<0> Right, but if your code doesn't destroy it, then you don't need to mess with it.
<1> right, but it doesn't save ECX or EDX for params 3 and 2
<1> and those might be destroyed by the code
<1> ok, let me ask this
<1> the function you are hooking, how many params does it take? is it a cl*** method call? and what calling convention does it have?
<0> It's a method call with one boolean parameter. Calling convention is register.
<1> then you'll need to save params 1+2
<1> need to add a push EDX and pop EDX in there
<0> Already there.
<1> oh ok
<1> is it erroring when it after it returns from you hook proc, and back to ide execution?
<0> I should probably mention that my hook is getting installed at the END of the target proc, not the beginning.
<0> Not sure... trying to track that down now.
<1> oh
<1> thats a bit more difficult, do you need to know what the parameters are?
<1> do you need to access them?
<1> at the end, the only thing you need to save is EAX, the return value
<0> I don't need to access them, other than the object in EAX
<0> And EDX is boolean type, I don't know what it's for, but I don't need to mess with it anyway.
<1> as long as EAX doesn't get garbled, you'll have to track the object throughout the function, a return value proc will destroy whats in EAX
<0> Right. That's ensured already.
<1> oh ok
<1> just trying to help
<0> Well, sort of.
<0> The value that needs to be in EAX is actually in EBX when the hook gets called.
<0> So I push EAX and EDX
<0> mov EAX, EBX
<0> do my business
<0> then pop EDX and EAX
<1> yup, sounds good
<1> EBX always needs saving
<0> I'm going to need to give up and go to sleep in about 10 minutes whether this works or not.
<1> i'm already ahead of ya ;-) ~yawns~
<0> Yeah, I've been yawning for a while now.
<0> But I'd like to see this work.
<4> visual studio express does compile same .net apps as studio 2005 right ? (optimization, speed, etc)
<1> i HAD to make it work once, since i've done it before
<1> oLeOlE, it may or may not
<1> i'm sure it does at least for C#
<1> they use the same compilers
<4> yeah c# for me
<4> for vb it doesnt ?
<1> csc.exe which comes with .NET Framework
<0> There we go... one successful test.
<1> oLeOlE: donno, don't write in vb
<4> neither me
<4> anyway if c# does the same exes
<4> I'll stick with express
<1> but csc.exe comes with the framework, which all the studio's use
<1> the compiler itself is free, but the ide isn't
<4> Rahly what is exactly the diff between studio 2005 and express ?
<4> I'm not following the ms strategy
<4> coz in express I can do pretty much everything
<1> language support?
<4> I mean compared to Delphi
<1> i'm sure there is a bunch of things it doesn't do
<1> oh
<1> ummm donno
<1> they do call it the delphi killer
<4> need to find a comparison chart
<1> C# doesn't have a "
<1> with" command ;-)
<4> true and that can be annoying
<1> c# switches work like delphi's cases not c++'s switch
<1> got it working now, eh vibes?
<0> Maybe. Hasn't crashed in 3 trial runs. :)
<4> well if you are working with hooks 3 trial runs isnt enough
<0> oLeOlE: Which would be why I said "maybe"
<4> yep
<0> Unfortunately, it still doesn't solve the problem I hoped it would solve, but it does appear to be stable.
<0> ...And is certainly a step towards solving the problem, as the solution will certainly involve hooking SOMETHING.
<1> lol
<1> sorry
<1> i donno what the "solution" is :-D
<0> Nah, it's good.
<1> ahh ok
<0> Rahly, you've been a big help. Thanks a bunch.
<0> I owe you one.
<1> np
<1> been there done that
<0> The hook thing is solved... now I need to figure out exactly what needs to be hooked, but at least now I know how to do it.
<1> i think i'm going to crash now
<0> Me too... have a good night.
<1> hehe
<1> its not that hard
<5> http://www.break.com/movies/awesome_bucket_drummer.html
<6> Morning.
<7> lo
<6> hey grim.
<4> lo grimlar
<6> Hrmm
<6> I migh thave to disable the firewall logs
<6> The number of portscans I get
<6> from completely different ips
<6> isn't funny anymore.
<8> hello, how can I search in a MDB file with case insensitive set ? (by default it uses case sensitive)
<9> anyone here know a facny waiting bar that bounces back and forht I can use?
<10> moo!
<10> Anyone worked with Word XP in COM ? :/
<10> HEH
<6> I feel like writing something great.
<10> you mean coding something gret
<10> great*
Return to
#delphi
or
Go to some related
logs:
#freebsd
#politics
darkwise 1975
sqlqueries+1st row
#nintendo
teainchina
#visualbasic
#beginner
#slackware
#red
|
|