I have included a simple Visual Basic 6 project that deletes the dummy file "C:\[login to view URL]". The function that deletes the file is inside a DLL and is called by a button on the main form.
I need my project to hook NtCreateFile() and NtOpenFile() so whenever my application tries to delete a file, a YES/NO MsgBox appears saying "Are you sure you want to delete this file?". If the user clicks No, the file is not deleted.
If Visual Basic cannot hook these API's, a C/C++ wrapper might be needed.
The code provided is fully functional and ready for someone to start working on the API hooking code immediately.
*********** EDIT 2006-07-24 *************
Question:
"Why would you need to monitor your own program when you coded it?"
Answer:
Because I want to reference third party DLL's that could potentially have nasty code. By hooking potentially unsafe API calls (starting with deletion), I can create a sandbox of sorts.
**************************************
## Deliverables
1) Complete and fully-functional working program(s) in executable form as well as complete source code of all work done.
2) Deliverables must be in ready-to-run condition, as follows (depending on the nature of the deliverables):
a) For web sites or other server-side deliverables intended to only ever exist in one place in the Buyer's environment--Deliverables must be installed by the Seller in ready-to-run condition in the Buyer's environment.
b) For all others including desktop software or software the buyer intends to distribute: A software installation package that will install the software in ready-to-run condition on the platform(s) specified in this bid request.
3) All deliverables will be considered "work made for hire" under U.S. Copyright law. Buyer will receive exclusive and complete copyrights to all work purchased. (No GPL, GNU, 3rd party components, etc. unless all copyright ramifications are explained AND AGREED TO by the buyer on the site per the coder's Seller Legal Agreement).
## Platform
Visual Basic 6
Windows XP