I've just made a new version of my call logger. I added new features:
-logging all tls callbacks
-logging all dll main
-new script system
I added logging all tls callbacks and dll main because program works as a single stepping debugger and now debugger checks in tls callbacks and dll main can be bypassed.
Scripting
Now script file looks:
When call logger reach a given EIP, before call to a given function or after call to a given function then call logger will call to a function functionName. Now call logger provides thirteen functions which can be used to do some action like: get or set register value, get or set memory value and so on. Example script file and dll will be provided with application.#this is one line comment file=hook.dll # dll which will be loaded eip=0x12345678;functionName; beforedll=VirtualQuery;
functionName
; afterdll=VirtualQuery;
functionName
; beforecall=0x12345678;
functionName
; aftercall=0x12345678;
functionName
;
You can download here 32 bit version
Till next time.
No comments:
Post a Comment