Exetools  

Go Back   Exetools > General > General Discussion

Notices

Reply
 
Thread Tools Display Modes
  #1  
Old 09-20-2022, 14:51
WhoCares's Avatar
WhoCares WhoCares is offline
who cares
 
Join Date: Jan 2002
Location: Here
Posts: 409
Rept. Given: 10
Rept. Rcvd 16 Times in 14 Posts
Thanks Given: 41
Thanks Rcvd at 155 Times in 61 Posts
WhoCares Reputation: 17
Any Windows API monitor software there?

hi,

I want to monitor some winsock API call of some EXEs to find why it behaves weirdly when my WFP driver is loaded.

I just tried "http://www.rohitab.com/apimonitor#Overview", it incorrectly displays all winsock API names as "ntohs()" on Windows 10.

Any other stable (winsock) api monitor there? Better open source.
My last resort is coding my own.

Thanks for your recommendations.
__________________
AKA Solomon/blowfish.
Reply With Quote
  #2  
Old 09-20-2022, 18:13
aijundi aijundi is offline
Friend
 
Join Date: Jul 2019
Posts: 33
Rept. Given: 1
Rept. Rcvd 0 Times in 0 Posts
Thanks Given: 2
Thanks Rcvd at 30 Times in 16 Posts
aijundi Reputation: 0
Check WinAPIOverride.
Reply With Quote
The Following 3 Users Say Thank You to aijundi For This Useful Post:
kOuD3LkA (09-23-2022), sh3dow (09-28-2022), WhoCares (09-20-2022)
  #3  
Old 09-20-2022, 20:43
binarylaw binarylaw is offline
Friend
 
Join Date: Jul 2019
Posts: 38
Rept. Given: 0
Rept. Rcvd 0 Times in 0 Posts
Thanks Given: 394
Thanks Rcvd at 10 Times in 7 Posts
binarylaw Reputation: 0
Quote:
Originally Posted by WhoCares View Post
hi,

I want to monitor some winsock API call of some EXEs to find why it behaves weirdly when my WFP driver is loaded.

I just tried "http://www.rohitab.com/apimonitor#Overview", it incorrectly displays all winsock API names as "ntohs()" on Windows 10.

Any other stable (winsock) api monitor there? Better open source.
My last resort is coding my own.

Thanks for your recommendations.
Rohitab's API Monitor was a really cool tool, I've long wondered why they abandoned it.
Reply With Quote
  #4  
Old 09-21-2022, 08:53
WhoCares's Avatar
WhoCares WhoCares is offline
who cares
 
Join Date: Jan 2002
Location: Here
Posts: 409
Rept. Given: 10
Rept. Rcvd 16 Times in 14 Posts
Thanks Given: 41
Thanks Rcvd at 155 Times in 61 Posts
WhoCares Reputation: 17
It's free, maybe no money support

Quote:
Originally Posted by binarylaw View Post
Rohitab's API Monitor was a really cool tool, I've long wondered why they abandoned it.
__________________
AKA Solomon/blowfish.
Reply With Quote
  #5  
Old 09-23-2022, 07:08
Stingered Stingered is offline
Friend
 
Join Date: Dec 2017
Posts: 256
Rept. Given: 0
Rept. Rcvd 2 Times in 2 Posts
Thanks Given: 296
Thanks Rcvd at 179 Times in 89 Posts
Stingered Reputation: 2
Quote:
Originally Posted by aijundi View Post
Unfortunately, the latest REV require a license for VMs.
Reply With Quote
  #6  
Old 10-12-2022, 17:39
bolzano_1989 bolzano_1989 is offline
Friend
 
Join Date: Dec 2011
Posts: 109
Rept. Given: 16
Rept. Rcvd 27 Times in 18 Posts
Thanks Given: 10
Thanks Rcvd at 193 Times in 66 Posts
bolzano_1989 Reputation: 27
Quote:
Originally Posted by Stingered View Post
Unfortunately, the latest REV require a license for VMs.
Is the old version not good enough for you?

https://forum.exetools.com/showpost.php?p=120478&postcount=42
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



All times are GMT +8. The time now is 18:39.


Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX, chessgod101
( 1998 - 2024 )