Skip to content
/ Syskey Public
forked from blobbyblo/Syskey

A simple NtUserGetAsyncKeyState wrapper

License

GPL-3.0 license
0 stars 21 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

tovc/Syskey

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
Syskey
Syskey
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
Syskey.sln
Syskey.sln
 
 

Repository files navigation

Explanation and Analysis

You can view the writeup I did over this project over at my blog. https://bobbyobrien.com/posts/syskey/

Syskey

Syskey is a simple NtUserGetAsyncKeyState syscall wrapper. This implementation was done in a way to avoid both imports and direct calling of GetAsyncKeyState for obscurity and security.

Prodecure:

Dynamically finds and saves the syscall ID of NtUserGetAsyncKeyState
Calls the syscall ID using the VK code provided
Returns as expected

Example usage:

if (nt::GetKey(VK_F1) & 0x8000)
     printf("F1 just got called!\n");

About

A simple NtUserGetAsyncKeyState wrapper

Resources

Readme

License

GPL-3.0 license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

2 tags

Packages

No packages published

Languages

  • C++ 97.2%
  • Assembly 2.8%