Hook API the realization of the document control to a certain type of encryption

Which God can show one or two?
Such as the need to use that kind of language development, what development software, the concrete realization of the code for me to learn about
Or you develop, I pay the piper.

Started by Doris at February 13, 2016 - 5:31 AM

The first peak

Posted by Doris at February 16, 2016 - 6:31 AM

But I see online, said many of the current applications in order to stop hackers set up anti hook technology, this kind of program at startup, once found a hook intrusion, will automatically stop running

Posted by Doris at December 15, 2016 - 2:22 AM

If God is a VDM driver development, so much the better

Posted by Doris at December 23, 2016 - 2:51 AM

In two ways
1,User level HOOK, HOOK CreateFile, ReadFile, WriteFile on the file manipulation functions, then write file to write data encryption, decryption of data read time.
2 driver, file filter driver, simple words can be implemented by minifilter.
Method to process injection, two do not need
Recommend the use of file system filter driver to implement, general.

Development language is C/C++, of course, you can also use dephi.

Posted by Kerr at January 03, 2017 - 3:33 AM

WDM, Windows Driver Model abbreviation, this technique is called transparent encryption file. I have had this experience, we can exchange.

Posted by Kerr at January 07, 2017 - 5:01 AM

Feel shy, friends upstairs, I am busy these days with the Bureau of industry and commerce file things, a time to forget the forum thing, would you leave contact way, or directly at the Forum?

Posted by Doris at January 12, 2017 - 4:15 AM

R3 implementation file monitor is unlikely, imagine, HOOK API can only monitor to a program, I create a new file in the C drive, API HOOK how to monitor? If you want to monitor a file, the file system filter driver is the best choice

Posted by Kay at January 13, 2017 - 4:57 AM