文件名称:detoured
介绍说明--下载内容均来自于网络,请自行研究使用
一、Detours库的来历及下载: Detours库类似于WTL的来历,是由Galen Hunt and Doug Brubacher自己开发出来,于99年7月发表在一篇名为《Detours: Binary Interception of Win32 Functions.》的论文中。基本原理是改写函数的头5个字节(因为一般函数开头都是保存堆栈环境的三条指令共5个字节:8B FF 55 8B EC)为一条跳转指令,直接跳转到自己的函数开头,从而实现API拦截的。后来得到MS的支持并在其网站上提供下载空间:
-Detours origins of the library and download: Detours library similar to the origins of the WTL developed by Galen Hunt and Doug Brubacher, published on July 99 in an article entitled "Detours: Binary Interception of the Win32 Functions." The papers. The basic principle is that the first five bytes of the rewrite function (three instructions to save the stack environment since the beginning of the general function of 5 bytes: 8B FF 55 8B EC) for a jump instruction to jump directly to the beginning of the function , enabling API interception. Later MS support and download the space provided on its website:
-Detours origins of the library and download: Detours library similar to the origins of the WTL developed by Galen Hunt and Doug Brubacher, published on July 99 in an article entitled "Detours: Binary Interception of the Win32 Functions." The papers. The basic principle is that the first five bytes of the rewrite function (three instructions to save the stack environment since the beginning of the general function of 5 bytes: 8B FF 55 8B EC) for a jump instruction to jump directly to the beginning of the function , enabling API interception. Later MS support and download the space provided on its website:
(系统自动生成,下载前可以参看下载内容)
下载文件列表
detoured.dll
detoured.lib
detours.h
detours.lib