how to hook recv in Warcraft3

[feng]

I'm new in hooking socket api and i had managed to hook send, sendto and recvfrom with modify IAT table, However i can't hook the recv.I find recv entrypoint is 0x71a42e70, but it can't make work, anyone can share tips or codes that managed to hook recv in warcraft 3?thanks!

[MiCrOz]

Maybe if you didn't make two threads of this, AND post the same question in another thread, I'd help you.

[feng]

sorry, I first time coming here,when i post that question, Internet speed is very slow,so i make a mistake ,post this in two thread.i sincere hope to know why result in can't hook the recv in war3.can you telll me?

[Dyndrilliac]

If hooking via modifying the IAT isn't working, implement inline hooking (google is your friend). And Microz doesn't know anything, so don't get too worked up if he claims he wont help, or you're SOL.

One of the better API hooking topics on BWH: Trying to create a hook that hooks send(..) in WS2_32.dll

[feng]

thanks ,I'will have a try!

[devINVISIBLE]

Check out @http://research.microsoft.com/sn/detours/. They've done a nice job with their injection library.

Mathias Rauen ("Madshi") also has a pretty sweet library for hooking. I believe it's the library WC3Banlist decided to use. You can find more info at @http://help.madshi.net/madCodeHook.htm. This page gives you a nice run-down of some different ways you can hook a method: @http://help.madshi.net/ApiHookingMethods.htm

[feng]

thanks all,I have sloved my problem! In war3, it uses 4 socketApi :"send,sendto ,WSARecv and WSARecvFrom "!

Code:

their offset address is :	
             mysendJmp.HookOneAPI((PROC)0x71a2428a,(FARPROC)hook_send);
	mysendJmp.SetHookOn();
	mysendtoJmp.HookOneAPI((PROC)0x71a22c69,(FARPROC)hook_sendto);
	mysendtoJmp.SetHookOn();
	mywsarecvfromJmp.HookOneAPI((PROC)0x71a2f652,(FARPROC)hook_wsarecvfrom);
	mywsarecvfromJmp.SetHookOn();
	mywsarecvJmp.HookOneAPI((PROC)0x71a24318,(FARPROC)hook_wsarecv);
	mywsarecvJmp.SetHookOn();

[Zephyrix]

Don't use static addressess..
Use GetProcAddress to get the address.
Something like:

Code:

HANDLE hMod = GetModuleHandle("ws2_32.dll");
        mysendJmp.HookOneAPI(GetProcAddress(hMod, "send"),(FARPROC)hook_send);
	mysendJmp.SetHookOn();
        ...

Otherwise you could be hooking random addresses across different computers.

[MiCrOz]

Quote:

Originally Posted by Dyndrilliac

And Microz doesn't know anything, so don't get too worked up if he claims he wont help, or you're SOL.

And you assume this because..? Don't assume **** just because I'm not willing to help someone who spams the forums looking for help.

[Dyndrilliac]

lawlz nub, prove me wrong then.

And FYI, take that petty kiddy BS attitude else where. Go give people ultimatums and troll in the flame board or general chat.

[sd333221]

just use

Code:

hook((DWORD)recv, myrecv);

[ulliklliwi]

PHP Code:

#include <windows.h>
#include <winsock.h>
#include "detours.h"

#pragma comment(lib, "detours.lib")
#pragma comment(lib, "Ws2_32.lib")

typedef int (WINAPI* tRecv)(SOCKET s, char* buf, int len, int Flag);

    tRecv oRecv = NULL;

DWORD WINAPI SetHooks(LPVOID);
int WINAPI hRecv(SOCKET s, char* buf, int len, int Flag);

BOOL APIENTRY DllMain(HINSTANCE hModule, DWORD  ul_reason_for_call, LPVOID lpReserved)
{
    switch(ul_reason_for_call)
    {
        case DLL_PROCESS_ATTACH:
            CreateThread(0, 0, SetHooks, 0, 0, 0);
        break;
        case DLL_PROCESS_DETACH:
        break;
    }
    return TRUE;
}
    // Put me in a Thread;
DWORD WINAPI SetHooks(LPVOID) {
    for (Sleep(1000); GetModuleHandle("Ws2_32.dll") == NULL; Sleep(1000))
        continue;

    oRecv = (tRecv)DetourFunction((PBYTE)Recv, hRecv);
}

int WINAPI hRecv(SOCKET s, char* buf, int len, int Flag) {
    
    // do something b4 you call the RECV
    int iRet = oRecv(s, buf, len, Flag); // call real function
    // do something after you call RECV
    return iRet;
} 


[feng]

thanks a lot!