Skip to content

Releases: joaopinto15/WinAPI_Tracker

[DEBUG v0.3] WinAPI_Tracker

05 Jul 13:46
@joaopinto15 joaopinto15
v0.3.0-debug
ab7ee83

Choose a tag to compare

View all tags
[DEBUG v0.3] WinAPI_Tracker Latest
Latest

Final program

Assets 6
Loading

[DEBUG v0.1] WinAPI_Tracker

04 May 18:28
@joaopinto15 joaopinto15
v0.1.0-debug
ab7ee83

Choose a tag to compare

View all tags
[DEBUG v0.1] WinAPI_Tracker Pre-release
Pre-release

🐞 Debug Release Notes: WinAPI Injector

This release is a debug build of the WinAPI Injector with console output enabled for real-time monitoring and troubleshooting.

🔍 Logging Behavior

  • Logs are written by default to:

    C:\Program Files (x86)\ossec-agent\logs\winAPI_log.json

  • ⚠️ This path is set at config.ini at compile time in the Python script.
    If you want to change the log file location, you must recompile the script with the desired path.

⚙️ Configuration: config.ini

  • The config.ini file controls the folder being monitored for suspicious processes.

  • Example:

    [monitor]
monitored_folder = \\Device\\HarddiskVolume3\\malwareSample

  • To change the monitored folder, simply edit config.ini and restart the injector — no recompilation is required.

⚠️ File Placement Requirement

🔗 Important: The following files must remain in the same directory for the program to function correctly:

  • injector.exe
  • config.ini

If config.ini is missing or placed elsewhere, the injector will fail to start.

💉 Manual Injection Mode

You can also use the injector manually to attach to a process by providing its PID:

injector.exe <PID>

This allows you to inject the monitoring tool into any process of your choice (for example, one you're debugging or testing).

Loading