which function to hook in "ntdll.dll" for controlling process creation - Tech Support

Tech Support > which function to hook in "ntdll.dll" for controlling process creation

which function to hook in "ntdll.dll" for controlling process creation: Posted by yytg gold on May 2nd, 2007; For controlling process creation in windows I can hook few function
in the "kernel32.dll"\"advapi32.dll"
I want to hook the "root" - I mean the function responsible of
creating process's in the "ntdll.dll"
I hooked the function "NtCreateProcess" - but windows uses a different
function
Which function\s I need to hook?

Thanks in advance

Similar Posts

what is the difference between "AllocateHeap()" function and "malloc" (Development Resources) by shiva
Is there a execution folder for "shutdown" similar to "startup" during boot process? (Help and Support) by Claudia Miller
Is there a execution folder for "shutdown" similar to "startup" during boot process? (Microsoft Windows) by Claudia Miller
Varies problems...(eg :" the mouse lost it's "right-click" function") (Computers & Technology) by Black Tractor
WinXP "Windows Explorer has encountered a problem and needs to close...." Shell32.dll and ntdll.dll question. (Computers & Technology) by Sparky