Configurable and integratable Hook system in Windows environment and method thereof

An environment and subsystem technology, applied to the configurable and integrated Hook system and its fields in the Windows environment, can solve problems such as difficult for ordinary technicians to master, cumbersome technology and process, and achieve simple graphical interface, reduce operation difficulty, The effect of improving efficiency

Active Publication Date: 2018-02-13
武汉倚天剑科技有限公司
View PDF5 Cites 5 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] However, the use of Hook technology requires a variety of other technologies as support, such as DLL injection technology, inter-process communication technology, etc. These technologies and processes are very cumbersome and difficult for ordinary technicians to master

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Configurable and integratable Hook system in Windows environment and method thereof
  • Configurable and integratable Hook system in Windows environment and method thereof
  • Configurable and integratable Hook system in Windows environment and method thereof

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0059] Below in conjunction with accompanying drawing and embodiment describe in detail:

[0060] 1. System

[0061] 1. Overall

[0062] Such as figure 1 , the system includes a work object—a target process subsystem 200, and the target process subsystem 200 includes an injected hook unit 210;

[0063] An application subsystem 100 is provided;

[0064] The application subsystem 100 includes an injector unit 110 and a hook unit 120;

[0065] The injector unit 110 includes an injection module 111 and a communication module 112;

[0066] The hook unit 120 includes an inline hook module 121, an import address table hook module 122 and a vectorized exception handling hook module 123;

[0067] Its interaction relationship is:

[0068] The injection module 111, the hook unit 120, the injected hook unit 210 and the communication module 112 interact in sequence.

[0069] Working mechanism:

[0070] The user first determines the target process subsystem 200 to be injected in the...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a configurable and integratable Hook system in Windows environment and a method thereof and relates to the technical field of DLL injection technology, Hook technology and interprocess communication. The system is characterized in that an application program subsystem comprises an injector unit and a hook unit, the injector unit comprises an injection module and a communication module, the hook unit comprises an inline hook module, an import address table hook module and a vectored exception handling module, and the injection module, the hook unit, an injected hook unitand the communication module sequentially interact. The method includes: 1, creating a naming pipeline; 2, selecting a target process; 3, selecting a dynamic link library for injection; 4, selectingan injection mode; 5, feeding back injection information; 6, configuring Hook parameters; 7, transmitting the Hook parameters to the injected hook unit; 8, completing Hook functional procedure; 9, feeding back Hook information. The system is configurable, and related process parameters of Hook can be configured by a user; the system has the characteristic of being easy to operate and can help to intercept and acquire enough useful information.

Description

technical field [0001] The invention relates to the technical fields of DLL injection technology, Hook technology and inter-process communication, in particular to a configurable and integrated Hook system and a method thereof under the Windows environment. Background technique [0002] Hook technology is a low-level and meticulous security technology. From the perspective of security defense, today's common security guards and computer housekeepers and other application products are linked to many kernel hooks at the bottom layer of the operating system kernel to monitor many kernel functions. Calling has an inseparable relationship with the application of Hook technology. [0003] From the perspective of attack, Hook technology modifies the execution flow and enforces the characteristics of custom function process, which is used by many malicious software (such as Trojan horses, plug-ins, etc.). [0004] However, the use of Hook technology requires a variety of other tech...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/57G06F21/56
CPCG06F21/56G06F21/57
Inventor 张捷晟曾九天韩兰胜田钰杰付才余水肖雄火田昭
Owner 武汉倚天剑科技有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap