Win32API Tracer Application


Win32API Tracer Application

TNPLibrary aims at creating an OpenSource Tracing & Patching application that lets you trace any Win32API method from a target process with the ability to patch it at runtime dynamically.

Currently Tracing part is complete and a working version of Tracer is available for Download from SourceForge

Currently offers the ability to:

  •  Pause/Resume the capture
  •  Select different functions to trace
  •  Save the capture logs

Currently has the ability to trace:

  • Process/Thread creation/termination
  • Registry Key Creation/Deletion
  • Socket connection/bind/accept
  • CreateFile/CreateWindow/CreateDialog
  • more…

Tracer.exe Usage Instructions:

  1. After downloading the zip file from the above link, Start the “Tracer.exe” application from the “DynamicLinked” or “StaticLinked” directory.
  2. Enter the command line arguments for the target application
  3. Click on “Start” button.

This should display a window listing the API calls made by the target application. The File|Save option can be used to save the log entries

Advertisements

답글 남기기

아래 항목을 채우거나 오른쪽 아이콘 중 하나를 클릭하여 로그 인 하세요:

WordPress.com 로고

WordPress.com의 계정을 사용하여 댓글을 남깁니다. 로그아웃 /  변경 )

Google+ photo

Google+의 계정을 사용하여 댓글을 남깁니다. 로그아웃 /  변경 )

Twitter 사진

Twitter의 계정을 사용하여 댓글을 남깁니다. 로그아웃 /  변경 )

Facebook 사진

Facebook의 계정을 사용하여 댓글을 남깁니다. 로그아웃 /  변경 )

%s에 연결하는 중

%d 블로거가 이것을 좋아합니다: