Windows API Hooking - Hide Process from Task Manager tutorial

Beginning our series on the PE File Format we will be showing how you can hook Windows API functions to hide your process from task manager, we will be doing it in this example by injecting a DLL into Task Manager. You will learn some different APIs that haven’t been touched on in other videos and learn some things about the PE Header. How we do it: -Parse the PE Header -Parse the import table -Find -Find the address of NtQuerySystemInformation -Perform an import address tab
Back to Top