问题描述
我正在为我个人感兴趣的键盘记录器工作,并提出了与昨天相关的问题; 。
I am working on my keystroke logger for personal interest and asked a question related to this about yesterday; While loop using a lot of CPU.
程序的问题是它占用了太多的CPU使用,人们建议输入基于键事件。
The issue with the program was that it took too much CPU Usage, and people have suggested to make the inputs key-event based.
由于我是Win32 API的新手,我试图寻找引用和教程,将告诉我如何创建键盘输入为基于事件,而不是基于轮询。但问题是我找不到任何坚实的例子或参考,因为它是一个完整的新手很难理解。
Since I'm new to the Win32 API, I try to look for references and tutorials that will tell me how to create keyboard inputs as event-based, rather than poll based. But the problems is I could not found any solid examples or references, as it was quite difficult to understand for a complete newbie.
大多数人提到基于事件的编程驻留在GUI应用程序中,但我希望这个按键记录器应用程序成为控制台应用程序。
Most of them mentioned that the event-based programming resided in GUI application, yet I want this keystroke logger application to be a console application.
我的两个主要问题是:
- 我可以写一个基于事件的控制台键盘记录器Win32 API?如果没有,我的选项是什么?
和
- 是否有任何人有任何参考网站可以帮助我了解如何捕获基于事件的按键操作?
需要,我使用GCC编译器在Windows XP下使用代码块。
If additional information is needed, I am using Code Blocks under Windows XP with a GCC compiler.
推荐答案
键盘记录器应用程序使用。具体来说,你需要设置一个 WH_KEYBOARD
挂钩。
Key logger applications use mechanisms such as Win32 Hooks. Specifically you need to set a WH_KEYBOARD
hook.
有一些高级技巧,比如创建自己的键盘驱动程序,对于启动钩子是一个不错的选择。
There are move advanced techniques, like creating your own keyboard driver but for a start hooks are a good choice.
编辑:为了了解钩子过程的样子,我的个人效用。
To get an idea of how a hook procedure looks like, I post a fragment from my personal utility.
// ...
thehook = SetWindowsHookEx( WH_KEYBOARD_LL, hook_proc, hwnd, 0 );
// ...
/**
*
* wParam, one of the: WM_KEYDOWN, WM_KEYUP, WM_SYSKEYDOWN, or WM_SYSKEYUP
lParam: pointer to a KBDLLHOOKSTRUCT structure
(*) "The hook procedure should process a message in less time than the
data entry specified in the LowLevelHooksTimeout value in the following registry key:
HKEY_CURRENT_USER\Control Panel\Desktop
The value is in milliseconds. If the hook procedure does not
return during this interval, the system will pass the message to the next hook."
*
*/
LRESULT CALLBACK
hook_proc( int code, WPARAM wParam, LPARAM lParam )
{
static long ctrl_cnt = 0;
static bool mmode = false;
static DWORD time;
KBDLLHOOKSTRUCT* kbd = (KBDLLHOOKSTRUCT*)lParam;
if ( code < 0
|| (kbd->flags & 0x10) // ignore injected events
) return CallNextHookEx( thehook, code, wParam, lParam );
long ret = 1; // by default I swallow the keys
if ( mmode ) { // macro mode is ON
if ( WM_KEYDOWN == wParam )
PostMessage(mainwnd, WM_MCR_ACCUM, kbd->vkCode, 0);
if ( WM_KEYUP == wParam )
switch (kbd->vkCode) {
case VK_ESCAPE:
mmode = false;
keys.removeall();
PostMessage(mainwnd, WM_MCR_HIDE, 0, 0);
break;
case VK_RETURN:
PostMessage(mainwnd, WM_MCR_EXEC, 0, 0);
break;
case VK_LCONTROL:
mmode = false;
PostMessage(mainwnd, WM_MCR_HIDE, 0, 0);
PostMessage(mainwnd, WM_MCR_EXEC, 0, 0);
break;
}
/* Which non printable keys allow passing? */
switch( kbd->vkCode ) {
case VK_LCONTROL:
case VK_CAPITAL:
case VK_LSHIFT:
case VK_RSHIFT:
ret = CallNextHookEx( thehook, code, wParam, lParam );
}
}
else { // macro mode is OFF
/* Ctrl pressed */
if ( kbd->vkCode == VK_LCONTROL && WM_KEYDOWN == wParam ) {
ctrl_cnt = 1;
time = kbd->time;
}
/* Prevent ctrl combinations to activate macro mode */
if ( kbd->vkCode != VK_LCONTROL )
ctrl_cnt = 0;
/* Ctrl released */
if ( ctrl_cnt == 1 && WM_KEYUP == wParam ) {
if ( kbd->time - time > 40 ) {
mmode = true;
PostMessage(mainwnd, WM_MCR_SHOW, 0, 0);
}
}
ret = CallNextHookEx( thehook, code, wParam, lParam ); // let it pass
}
return ret;
}
这篇关于C ++ Win32键盘事件的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!