0 Replies - 1445 Views - Last Post: 10 November 2012 - 11:21 AM

#1 johnmiroberts  Icon User is offline

  • New D.I.C Head

Reputation: 0
  • View blog
  • Posts: 1
  • Joined: 10-November 12

Performing Action on Context Switch of Process - Windows

Posted 10 November 2012 - 11:21 AM

I am trying to create a program that performs a specific action (let's say, printing a time stamp) whenever a specified process experiences a context switch (either in or out). My research has pointed me towards the possibility of Windows kernel hooking being the best way to do this. Further research revealed that there is a kernel function called nt!SwapContext which is called every time there is a context switch. Unfortunately, I'm completely new to Windows hooking and have little idea of where to start with this (nor am I sure that my proposed way is accurate). Can anyone help me out?

Is This A Good Question/Topic? 0
  • +

Page 1 of 1