These are chat archives for EasyHook/EasyHook

25th
Apr 2017
Justin Stenning
@spazzarama
Apr 25 2017 08:17
@ultratrunks is that using the latest?
ultratrunks
@ultratrunks
Apr 25 2017 17:54
@spazzarama , no its not, source code i'm using is about 3 or 4 years old. I've just about upgraded it to the latest.
ultratrunks
@ultratrunks
Apr 25 2017 22:26
@spazzarama Well, it is taking me a little longer than I thought to get the latest source code integrated and working in my project. Might be a bit before I get it operational again. Even though, I think it would be a useful exercise for me to understand why, in my current version of the source, methods like SetDCBrushColor and TextOutA/TextOutW would stop working AFTER the windows 10 anniversary patch, while dozens of other API calls keep on working no problem. Earlier I stated that I thought "dll forwarding" has something to do with issue, i'm not completely convinced of that any longer, but its the only thing that makes sense.
To see which API functions are forwarded, you can use dumpbin.exe:
> dumpbin.exe /exports gdi32.dll | egrep -i forwarded
I piped through egrep here from "unix utils" to help find the functions that are actually forwarded.