Monitoring calls from Z.exe to foo() in Y.sys, a driver

  • Thread starter Thread starter Superposed_Cat
  • Start date Start date
AI Thread Summary
The discussion centers on how to monitor API calls from a program (Z.exe) to a USB device driver (Y.sys) specifically targeting a function (foo()). The original poster seeks a method to identify calls to foo() when these calls are not part of built-in Win32 library functions. Suggestions include using a debugger to set a breakpoint at the beginning of foo() if the source code is available. There is also mention of using Windows debugging tools, with a link provided for further resources. Participants express uncertainty about the current support status of these debugging methods but suggest they are likely still available.
Superposed_Cat
Messages
388
Reaction score
5
Say I write a driver for my usb device X containing a function foo(), and save it in c:/windows/system32/Y.sys, now i have a program Z.exe that I start up, it accesses X via Y.sys and calls foo(), how can I attack to Z.exe and look for any api calls to mydriver.sys specifically and return the name? I have googled but can't find any info that specifically looks for calls from Z to Y and returns foo's name if foo isn't a built in win32 library call. Any help appreciated.
 
Technology news on Phys.org
Superposed_Cat said:
Say I write a driver for my usb device X containing a function foo(), and save it in c:/windows/system32/Y.sys, now i have a program Z.exe that I start up, it accesses X via Y.sys and calls foo(), how can I attack to Z.exe and look for any api calls to mydriver.sys specifically and return the name? I have googled but can't find any info that specifically looks for calls from Z to Y and returns foo's name if foo isn't a built in win32 library call. Any help appreciated.
Since you wrote the code for Y.sys (or is it mydriver.sys?), can't you put a debugger breakpoint at the first line in foo()? I don't have any experience debugging drivers, so this might not be the advice you're looking for.
 
I did not write it myself, it came with the device, I seek to mod a specific function in the driver,
 
Superposed_Cat said:
I did not write it myself, it came with the device, I seek to mod a specific function in the driver,
Do you have the source code? If so, build your project in a debugger, with a breakpoint at the beginning of the function you're interested in.
 
Tom.G said:
There at least used to be a way using Windows debuggers, don't know if it is still supported.
I'm pretty sure those debuggers are still supported.
 

Thread 'Learning Assembly and computer architecture for x86'

Dear Peeps I have posted a few questions about programing on this sectio of the PF forum. I want to ask you veterans how you folks learn program in assembly and about computer architecture for the x86 family. In addition to finish learning C, I am also reading the book From bits to Gates to C and Beyond. In the book, it uses the mini LC3 assembly language. I also have books on assembly programming and computer architecture. The few famous ones i have are Computer Organization and...
View full post »

Thread 'Learning data structures and algorithms in different programming languages'

I have a quick questions. I am going through a book on C programming on my own. Afterwards, I plan to go through something call data structures and algorithms on my own also in C. I also need to learn C++, Matlab and for personal interest Haskell. For the two topic of data structures and algorithms, I understand there are standard ones across all programming languages. After learning it through C, what would be the biggest issue when trying to implement the same data...
View full post »

Similar threads

System call in operating systems
Replies
3
Views
2K
I am getting an error Import "_frozen_importlib" could not be resolved
Replies
5
Views
14K
Having trouble setting up mern in Visual Studio code
Replies
16
Views
2K
Making a sysytem file monitor, how ?
Replies
2
Views
2K
Fortran Linking fortran libraries with g95 in Windows Powershell
Replies
12
Views
3K
Python Create a binary search tree in python with the support of variables
Replies
13
Views
4K
Find Free Software to Log Disk Usage & Monitor Processes
Replies
30
Views
2K
Close Calls from Falling Objects Out of High Rises
Replies
6
Views
2K
Requesting suggestions for languages, libraries, and architectures for parallel (and sometimes non parallel) numerical and scientific computations
Replies
8
Views
4K
Baez's polynomials and OpenGL graphics
Replies
2
Views
2K

Hot Threads

Recent Insights

Back
Top