Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Windows Detours SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Windows Detours

Another one of those Windows tools you wished you had heard about yesterday!

Ever wish you could log any call to a specific Win32 API? Enter detours, it can hook into a process, and log any everything. Lets not stop there, it can intercept arbitrary function calls! Believe it or not detours has been around since 1999, described here  and  here. The official description is that detours can instrument and extend existing operating system and application functionality. Think about it...

Cheers,
Adrien de Beaupré
Bell Canada

Thanks Robert!

Adrien de Beaupre

353 Posts
ISC Handler
May 2nd 2008

Sign Up for Free or Log In to start participating in the conversation!