Minimal Example on how to hook Games using a custom DInput8 DLL.

Author: pampersrocker

MinimalDInput8Hook/CustomHooks.cpp

@@ -0,0 +1,85 @@
+#include "stdafx.h"
+#include "CustomHooks.h"
+
+typedef HANDLE(*CreateFileA_t)(
+	LPCSTR                lpFileName,
+	DWORD                 dwDesiredAccess,
+	DWORD                 dwShareMode,
+	LPSECURITY_ATTRIBUTES lpSecurityAttributes,
+	DWORD                 dwCreationDisposition,
+	DWORD                 dwFlagsAndAttributes,
+	HANDLE                hTemplateFile);
+
+typedef HANDLE(*CreateFileW_t)(
+	LPCWSTR                lpFileName,
+	DWORD                 dwDesiredAccess,
+	DWORD                 dwShareMode,
+	LPSECURITY_ATTRIBUTES lpSecurityAttributes,
+	DWORD                 dwCreationDisposition,
+	DWORD                 dwFlagsAndAttributes,
+	HANDLE                hTemplateFile);
+
+CreateFileA_t OriginalCreateFileA;
+CreateFileW_t OriginalCreateFileW;
+
+HANDLE CreateFileA_Wrapper(
+	LPCSTR                lpFileName,
+	DWORD                 dwDesiredAccess,
+	DWORD                 dwShareMode,
+	LPSECURITY_ATTRIBUTES lpSecurityAttributes,
+	DWORD                 dwCreationDisposition,
+	DWORD                 dwFlagsAndAttributes,
+	HANDLE                hTemplateFile
+)
+{
+	// Do our custom stuff and parameter rewriting
+	WriteConsoleA(GetStdHandle(STD_OUTPUT_HANDLE), lpFileName, (DWORD)strlen(lpFileName), nullptr, nullptr);
+	WriteConsoleA(GetStdHandle(STD_OUTPUT_HANDLE), "\n", 1, nullptr, nullptr);
+
+	// Call the original CreateFileA function
+	return OriginalCreateFileA(
+		lpFileName,
+		dwDesiredAccess,
+		dwShareMode,
+		lpSecurityAttributes,
+		dwCreationDisposition,
+		dwFlagsAndAttributes,
+		hTemplateFile);
+}
+
+HANDLE CreateFileW_Wrapper(
+	LPCWSTR                lpFileName,
+	DWORD                 dwDesiredAccess,
+	DWORD                 dwShareMode,
+	LPSECURITY_ATTRIBUTES lpSecurityAttributes,
+	DWORD                 dwCreationDisposition,
+	DWORD                 dwFlagsAndAttributes,
+	HANDLE                hTemplateFile
+)
+{
+	// Do our custom stuff and parameter rewriting
+	WriteConsoleW(GetStdHandle(STD_OUTPUT_HANDLE), lpFileName, (DWORD)wcslen(lpFileName), nullptr, nullptr);
+	WriteConsoleW(GetStdHandle(STD_OUTPUT_HANDLE), L"\n", 1, nullptr, nullptr);
+
+	// Call the original CreateFileW function
+	return OriginalCreateFileW(
+		lpFileName,
+		dwDesiredAccess,
+		dwShareMode,
+		lpSecurityAttributes,
+		dwCreationDisposition,
+		dwFlagsAndAttributes,
+		hTemplateFile);
+}
+
+void SetupHooks()
+{
+	// Create a console for Debug output
+	AllocConsole();
+
+	// Setup hooks here, see examples below
+	
+	OriginalCreateFileA = HookFunction("KERNEL32.dll", "CreateFileA", &CreateFileA_Wrapper);
+	OriginalCreateFileW = HookFunction("KERNEL32.dll", "CreateFileW", &CreateFileW_Wrapper);
+}
+

MinimalDInput8Hook/CustomHooks.h

@@ -0,0 +1,5 @@
+#pragma once
+
+#include "Hook.h"
+	
+void SetupHooks();

MinimalDInput8Hook/DInput8.h

@@ -0,0 +1,25 @@
+#pragma once
+#include <unknwn.h>
+
+
+typedef HRESULT(*DirectInput8Create_t)(
+	HINSTANCE hinst,
+	DWORD dwVersion,
+	REFIID riidltf,
+	LPVOID * ppvOut,
+	LPUNKNOWN punkOuter
+	);
+
+extern DirectInput8Create_t OriginalFunction;
+extern HMODULE DInput8DLL;
+
+extern "C"
+{
+	DINPUT8_API HRESULT DirectInput8Create(
+		HINSTANCE hinst,
+		DWORD dwVersion,
+		REFIID riidltf,
+		LPVOID * ppvOut,
+		LPUNKNOWN punkOuter
+	);
+}

MinimalDInput8Hook/Hook.cpp

@@ -0,0 +1,80 @@
+#include "stdafx.h"
+#include "Hook.h"
+
+PROCESS_BASIC_INFORMATION BasicProcessInfo;
+
+void InitializeHooking()
+{
+	// Get our Process Handle
+	const HANDLE Process = OpenProcess(PROCESS_QUERY_LIMITED_INFORMATION, false, GetCurrentProcessId());
+
+	// Find out our base address, where the Executable image is loaded in memory
+	NtQueryInformationProcess(Process, ProcessBasicInformation, &BasicProcessInfo, sizeof(BasicProcessInfo), nullptr);
+}
+
+void* HookFunction_Internal(const char* DLLName, const char* FunctionName, void* NewAddress)
+{
+	// In the PEB structure provided by Microsoft the ImageBaseAddress is part of a "Reserved" array,
+	// for better clarity we use a custom struct here
+	CUSTOM_PEB* PEBExtendedInfo = (CUSTOM_PEB*)BasicProcessInfo.PebBaseAddress;
+	PIMAGE_DOS_HEADER pDOSHeader = (PIMAGE_DOS_HEADER)PEBExtendedInfo->ImageBaseAddress;
+	// This is the start of the executable file in memory
+	BYTE* BaseAddress = (BYTE*)PEBExtendedInfo->ImageBaseAddress;
+
+	// Get the Address of our NT Image headers
+	PIMAGE_NT_HEADERS64 FileHeader = (PIMAGE_NT_HEADERS64)(BaseAddress + pDOSHeader->e_lfanew);
+
+	// Retrieve the import directory in which all imported dlls and functions are listed
+	IMAGE_DATA_DIRECTORY ImportDirectory = FileHeader->OptionalHeader.DataDirectory[IMAGE_DIRECTORY_ENTRY_IMPORT];
+	const int NumImportDesciptors = ImportDirectory.Size / sizeof(IMAGE_IMPORT_DESCRIPTOR);
+	PIMAGE_IMPORT_DESCRIPTOR Descriptors = (PIMAGE_IMPORT_DESCRIPTOR)(BaseAddress + ImportDirectory.VirtualAddress);
+
+	// Go through all imported DLLs and find the one we are insteresed in
+	for (int ImportDLLIndex = 0; ImportDLLIndex < NumImportDesciptors; ++ImportDLLIndex)
+	{
+		PIMAGE_IMPORT_DESCRIPTOR Descriptor = Descriptors + ImportDLLIndex;
+		const char* ImportDLLName = (const char*)BaseAddress + Descriptor->Name;
+
+		// Check if we found our DLL in the import table
+		if (!strcmp(ImportDLLName, DLLName))
+		{
+
+			PIMAGE_THUNK_DATA64 ImportNameTable = (PIMAGE_THUNK_DATA64)(BaseAddress + Descriptor->OriginalFirstThunk);
+			int Offset = 0;
+			// The import name table is a null terminated array, so iterate until we either found it or reach the null termination
+			while (ImportNameTable->u1.AddressOfData != 0)
+			{
+				PIMAGE_IMPORT_BY_NAME NameImport = (PIMAGE_IMPORT_BY_NAME)(BaseAddress + ImportNameTable->u1.AddressOfData);
+				// Null terminated function name start pointer is stored in here
+				const char* ImportFunctionName = NameImport->Name;
+
+				if (!strcmp(FunctionName, ImportFunctionName))
+				{
+					PIMAGE_THUNK_DATA64 ImportAddressTable = (PIMAGE_THUNK_DATA64)(BaseAddress + Descriptor->FirstThunk);
+					// The import address table is in the same order as the import name table
+					ImportAddressTable += Offset;
+
+					void* OriginalAddress = (void*)ImportAddressTable->u1.AddressOfData;
+					DWORD OldProtection;
+					// Make the page writable to patch the pointer
+					VirtualProtect(ImportAddressTable, sizeof(IMAGE_THUNK_DATA64), PAGE_READWRITE, &OldProtection);
+					ImportAddressTable->u1.AddressOfData = (ULONGLONG)NewAddress;
+					// Restore page protection to the previous state
+					VirtualProtect(ImportAddressTable, sizeof(IMAGE_THUNK_DATA64), OldProtection, &OldProtection);
+					return OriginalAddress;
+				}
+
+
+				++ImportNameTable;
+				++Offset;
+			}
+
+			// We've found the DLL but not the function, break here. No need to go through the rest of the DLLs
+			break;
+		}
+	}
+
+	// DLL and function import not found return nullptr to signal this
+	return nullptr;
+}
+

MinimalDInput8Hook/Hook.h

@@ -0,0 +1,82 @@
+#pragma once
+
+#include "stdafx.h"
+
+typedef struct _PEB_FREE_BLOCK {
+	_PEB_FREE_BLOCK          *Next;
+	ULONG                   Size;
+} PEB_FREE_BLOCK, *PPEB_FREE_BLOCK;
+
+typedef void(*PPEBLOCKROUTINE)(
+	PVOID PebLock
+	);
+
+struct CUSTOM_PEB
+{
+	BOOLEAN                 InheritedAddressSpace;
+	BOOLEAN                 ReadImageFileExecOptions;
+	BOOLEAN                 BeingDebugged;
+	BOOLEAN                 Spare;
+	HANDLE                  Mutant;
+	PVOID                   ImageBaseAddress;
+	PPEB_LDR_DATA           LoaderData;
+	PRTL_USER_PROCESS_PARAMETERS ProcessParameters;
+	PVOID                   SubSystemData;
+	PVOID                   ProcessHeap;
+	PVOID                   FastPebLock;
+	PPEBLOCKROUTINE         FastPebLockRoutine;
+	PPEBLOCKROUTINE         FastPebUnlockRoutine;
+	ULONG                   EnvironmentUpdateCount;
+	PVOID*                  KernelCallbackTable;
+	PVOID                   EventLogSection;
+	PVOID                   EventLog;
+	PPEB_FREE_BLOCK         FreeList;
+	ULONG                   TlsExpansionCounter;
+	PVOID                   TlsBitmap;
+	ULONG                   TlsBitmapBits[0x2];
+	PVOID                   ReadOnlySharedMemoryBase;
+	PVOID                   ReadOnlySharedMemoryHeap;
+	PVOID*                  ReadOnlyStaticServerData;
+	PVOID                   AnsiCodePageData;
+	PVOID                   OemCodePageData;
+	PVOID                   UnicodeCaseTableData;
+	ULONG                   NumberOfProcessors;
+	ULONG                   NtGlobalFlag;
+	BYTE                    Spare2[0x4];
+	LARGE_INTEGER           CriticalSectionTimeout;
+	ULONG                   HeapSegmentReserve;
+	ULONG                   HeapSegmentCommit;
+	ULONG                   HeapDeCommitTotalFreeThreshold;
+	ULONG                   HeapDeCommitFreeBlockThreshold;
+	ULONG                   NumberOfHeaps;
+	ULONG                   MaximumNumberOfHeaps;
+	PVOID*                  *ProcessHeaps;
+	PVOID                   GdiSharedHandleTable;
+	PVOID                   ProcessStarterHelper;
+	PVOID                   GdiDCAttributeList;
+	PVOID                   LoaderLock;
+	ULONG                   OSMajorVersion;
+	ULONG                   OSMinorVersion;
+	ULONG                   OSBuildNumber;
+	ULONG                   OSPlatformId;
+	ULONG                   ImageSubSystem;
+	ULONG                   ImageSubSystemMajorVersion;
+	ULONG                   ImageSubSystemMinorVersion;
+	ULONG                   GdiHandleBuffer[0x22];
+	ULONG                   PostProcessInitRoutine;
+	ULONG                   TlsExpansionBitmap;
+	BYTE                    TlsExpansionBitmapBits[0x80];
+	ULONG                   SessionId;
+};
+
+extern PROCESS_BASIC_INFORMATION BasicProcessInfo;
+
+void InitializeHooking();
+
+void* HookFunction_Internal(const char* DLLName, const char* FunctionName, void* NewAddress);
+
+template<typename T>
+T HookFunction(const char* DLLName, const char* FunctionName, T NewAddress)
+{
+	return (T)HookFunction_Internal(DLLName, FunctionName, NewAddress);
+}

MinimalDInput8Hook/MinimalDInput8Hook.cpp

@@ -2,5 +2,18 @@
 //
 
 #include "stdafx.h"
+#include "DInput8.h"
+#include "CustomHooks.h"
+DirectInput8Create_t OriginalFunction = nullptr;
+HMODULE DInput8DLL = nullptr;
 
 
+
+DINPUT8_API HRESULT DirectInput8Create(HINSTANCE hinst, DWORD dwVersion, REFIID riidltf, LPVOID * ppvOut, LPUNKNOWN punkOuter)
+{
+	if (OriginalFunction)
+	{
+		return OriginalFunction(hinst, dwVersion, riidltf, ppvOut, punkOuter);
+	}
+	return S_FALSE;
+}

MinimalDInput8Hook/MinimalDInput8Hook.vcxproj

@@ -75,12 +75,14 @@
   </PropertyGroup>
   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
     <LinkIncremental>true</LinkIncremental>
+    <TargetName>DINPUT8</TargetName>
   </PropertyGroup>
   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">
     <LinkIncremental>false</LinkIncremental>
   </PropertyGroup>
   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
     <LinkIncremental>false</LinkIncremental>
+    <TargetName>DINPUT8</TargetName>
   </PropertyGroup>
   <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">
     <ClCompile>
@@ -102,12 +104,13 @@
       <WarningLevel>Level3</WarningLevel>
       <Optimization>Disabled</Optimization>
       <SDLCheck>true</SDLCheck>
-      <PreprocessorDefinitions>_DEBUG;MINIMALDINPUT8HOOK_EXPORTS;_WINDOWS;_USRDLL;%(PreprocessorDefinitions)</PreprocessorDefinitions>
+      <PreprocessorDefinitions>_DEBUG;MINIMALDINPUT8HOOK_EXPORTS;_WINDOWS;_USRDLL;%(PreprocessorDefinitions);DLL_EXPORT</PreprocessorDefinitions>
       <ConformanceMode>true</ConformanceMode>
     </ClCompile>
     <Link>
       <SubSystem>Windows</SubSystem>
       <GenerateDebugInformation>true</GenerateDebugInformation>
+      <AdditionalDependencies>ntdll.lib;kernel32.lib;user32.lib;gdi32.lib;winspool.lib;comdlg32.lib;advapi32.lib;shell32.lib;ole32.lib;oleaut32.lib;uuid.lib;odbc32.lib;odbccp32.lib;%(AdditionalDependencies)</AdditionalDependencies>
     </Link>
   </ItemDefinitionGroup>
   <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">
@@ -136,22 +139,28 @@
       <FunctionLevelLinking>true</FunctionLevelLinking>
       <IntrinsicFunctions>true</IntrinsicFunctions>
       <SDLCheck>true</SDLCheck>
-      <PreprocessorDefinitions>NDEBUG;MINIMALDINPUT8HOOK_EXPORTS;_WINDOWS;_USRDLL;%(PreprocessorDefinitions)</PreprocessorDefinitions>
+      <PreprocessorDefinitions>NDEBUG;MINIMALDINPUT8HOOK_EXPORTS;_WINDOWS;_USRDLL;%(PreprocessorDefinitions);DLL_EXPORT</PreprocessorDefinitions>
       <ConformanceMode>true</ConformanceMode>
     </ClCompile>
     <Link>
       <SubSystem>Windows</SubSystem>
       <EnableCOMDATFolding>true</EnableCOMDATFolding>
       <OptimizeReferences>true</OptimizeReferences>
       <GenerateDebugInformation>true</GenerateDebugInformation>
+      <AdditionalDependencies>ntdll.lib;kernel32.lib;user32.lib;gdi32.lib;winspool.lib;comdlg32.lib;advapi32.lib;shell32.lib;ole32.lib;oleaut32.lib;uuid.lib;odbc32.lib;odbccp32.lib;%(AdditionalDependencies)</AdditionalDependencies>
     </Link>
   </ItemDefinitionGroup>
   <ItemGroup>
+    <ClInclude Include="CustomHooks.h" />
+    <ClInclude Include="DInput8.h" />
+    <ClInclude Include="Hook.h" />
     <ClInclude Include="stdafx.h" />
     <ClInclude Include="targetver.h" />
   </ItemGroup>
   <ItemGroup>
-    <ClCompile Include="dllmain.cpp" />
+    <ClCompile Include="CustomHooks.cpp" />
+    <ClCompile Include="DLLMain.cpp" />
+    <ClCompile Include="Hook.cpp" />
     <ClCompile Include="MinimalDInput8Hook.cpp" />
     <ClCompile Include="stdafx.cpp">
       <PrecompiledHeader Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">Create</PrecompiledHeader>

MinimalDInput8Hook/MinimalDInput8Hook.vcxproj.filters

@@ -21,6 +21,15 @@
     <ClInclude Include="targetver.h">
       <Filter>Header Files</Filter>
     </ClInclude>
+    <ClInclude Include="DInput8.h">
+      <Filter>Header Files</Filter>
+    </ClInclude>
+    <ClInclude Include="Hook.h">
+      <Filter>Header Files</Filter>
+    </ClInclude>
+    <ClInclude Include="CustomHooks.h">
+      <Filter>Header Files</Filter>
+    </ClInclude>
   </ItemGroup>
   <ItemGroup>
     <ClCompile Include="stdafx.cpp">
@@ -29,7 +38,13 @@
     <ClCompile Include="MinimalDInput8Hook.cpp">
       <Filter>Source Files</Filter>
     </ClCompile>
-    <ClCompile Include="dllmain.cpp">
+    <ClCompile Include="CustomHooks.cpp">
+      <Filter>Source Files</Filter>
+    </ClCompile>
+    <ClCompile Include="Hook.cpp">
+      <Filter>Source Files</Filter>
+    </ClCompile>
+    <ClCompile Include="DLLMain.cpp">
       <Filter>Source Files</Filter>
     </ClCompile>
   </ItemGroup>