Application Security Testing: An Integral Part of DevOps
This article is about how to log keystrokes. There is an article on this topic, "Hooking the Keyboard," already on CodeGuru.
Windows 2000 onwards provides system-wide, low-level hooks. By using these hooks, we can have a system-wide hook in a single program/project. We can use this functionality to set a system-wide hook.
HHOOK SetWindowsHookEx (int idHook, HOOKPROC lpfn, HINSTANCE hMod, DWORD dwThreadId);
idHook is the hook ID for which we want to hook. Windows supports the following hooks:
The lpfn parameter is a function pointer to a callback function that we want to invoke after getting the event.
hMod is the handle of the current application. It is different from the window handle; it can be retrieved by calling the AfxGetInstanceHandle function of MFC.
This specifies the identifier of the thread with which the hook procedure is to be associated. If this parameter is zero, the hook procedure is associated with all existing threads running in the same desktop as the calling thread.
I am enclosing a running example for hooking the keyboard.