windows hook + pyhook3 + python win32api hook + C 键盘hook

安装pyhook3见：https://www.cnblogs.com/lqerio/p/12096710.html

使用见：https://www.cnblogs.com/lqerio/p/12106771.html

下面是自己学的时候查到的东西的一些整理，

///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////

下面开始是整理

////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////

windows hook原理：

windows hook 原理与实现  https://blog.csdn.net/m0_37552052/article/details/81453591

hook 基本原理 https://blog.csdn.net/qq_36381855/article/details/79962673

《windows核心编程系列》十八谈谈windows钩子  https://blog.csdn.net/fanhenghui/article/details/54138080

windows hook api:

callnexthookex()  https://baike.baidu.com/item/CallNextHookEx/3777953?fr=aladdin

C语言windows 键盘Hook：

https://blog.csdn.net/yan_star/article/details/88528631

https://blog.csdn.net/johnny_83/article/details/1701822

https://www.iteye.com/blog/huiytt-1829744

python 使用win32api windows hook ：

https://www.cnblogs.com/megachen/p/9879224.html

使用到的库：

• ctypes(通过ctypes来调用Win32API, 主要就是调用钩子函数)

使用的Win32API

• SetWindowsHookEx(), 将用户定义的钩子函数添加到钩子链中, 也就是我们的注册钩子函数
• UnhookWindowsHookEx(), 卸载钩子函数
• CallNextHookEx()在我们的钩子函数中必须调用, 这样才能让程序的传递消息

在没有钩子函数的情况下windows程序运行机制

• 键盘输入 --> 系统消息队列 --> 对应应用程序的消息队列 --> 将消息发送到对应的窗口中

在有了钩子函数的情况下windows程序运行机制

• 键盘输入 --> 系统消息队列 --> 对应应用程序消息队列 --> 将消息发送到钩子链中 --> 消息一一调用完毕所有的钩子函数(需要调用CallNextHookEx函数才能将消息传递下去) --> 将消息发送到对应的窗口中

示例程序

• 注意:
  • 在程序中, 我们通过CFUNCTYPE返回一个类对象, 通过该类对象可以实例化出我们需要的c类型的函数, 但是如果不将他放在全局的话则会失去效果, 因为在C语言中函数是全局的

# -*- coding: utf-8 -*-
import os
import sys
from ctypes import *
from ctypes.wintypes import *


"""
define constants
"""
WH_KEYBOARD = 13
WM_KEYDOWN = 0x0100
CTRL_CODE = 162


class JHKeyLogger(object):

    def __init__(self, user32, kernel32):
        """
        Description:
            Init the keylogger object, the property 'hook_' is the handle to control our hook function
        
        Args:
            @(dll)user32: just put windll.user32 here
            @(dll)kernel32: just put windll.kernel32 here

        Returns:
            None
        """
        self.user32_ = user32
        self.kernel32_ = kernel32
        self.hook_ = None
        
    def install_hookproc(self, hookproc):
        """
        Description:
            install hookproc function into message chain

        Args:
            @(c type function)hookproc: hookproc is the hook function to call

        Returns:
            @(bool):
                if SetWindowHookExA() function works successfully, return True
                else return False
        """
        self.hook_ = self.user32_.SetWindowsHookExA(
                                      WH_KEYBOARD,
                                      hookproc,
                                      self.kernel32_.GetModuleHandleW(None),
                                      0)
        if not self.hook_:
            return False
        return True

    def uninstall_hookproc(self):
        """
        Description：
            uninstall the hookproc function which means pick the hookproc pointer off the message chain
        Args:
            None
        Returns:
            None
        """
        if not self.hook_:
            return
        self.user32_.UnhookWindowsHookEx(self.hook_)
        self.hook_ = None

    def start(self):
        """
        Description:
            start logging, just get the message, the current thread will blocked by the GetMessageA() function
        
        Args:
            None
        Returns:
            None
        """
        msg = MSG()
        self.user32_.GetMessageA(msg, 0, 0, 0)

    def stop(self):
        self.uninstall_hookproc()


def hookproc(nCode, wParam, lParam):
    """
    Description:
        An user-defined hook function

    Attention:
        here we use the global variable named 'g_keylogger'
    """
    if wParam != WM_KEYDOWN:
        return g_keylogger.user32_.CallNextHookEx(g_keylogger.hook_, nCode, wParam, lParam)

    pressed_key = chr(lParam[0])
    print pressed_key,
    # hit ctrl key to stop logging
    if CTRL_CODE == lParam[0]:
        g_keylogger.stop()
        sys.exit(-1)
    return g_keylogger.user32_.CallNextHookEx(g_keylogger.hook_, nCode, wParam, lParam)


# Attention: pointer must be defined as a global variable
cfunctype = CFUNCTYPE(c_int, c_int, c_int, POINTER(c_void_p))
pointer = cfunctype(hookproc)

g_keylogger = JHKeyLogger(windll.user32, windll.kernel32)

def main():
    if g_keylogger.install_hookproc(pointer):
        print 'install keylogger successfully!'
    g_keylogger.start()
    print 'hit ctrl to stop'
    
if __name__ == '__main__':
    main()

pyHook3：

pywin32简介：

https://www.cnblogs.com/achillis/p/10462585.html

pyHook 源码：

https://sourceforge.net/p/pyhook/code/ci/master/tree/README.txt

知乎pyhook：

https://www.zhihu.com/search?type=content&q=pyhook

使用pyHook的例子：

https://oldj.net/blog/2010/07/14/python-hook/

添加开始和结束按键    https://blog.csdn.net/cd_xuyue/article/details/50688748

添加开始和结束快捷键  https://blog.csdn.net/dyx1024/article/details/7338646

  使用按键Q退出监控     https://www.jianshu.com/p/6aa741a58acb?utm_campaign=maleskine&utm_content=note&utm_medium=seo_notes&utm_source=recommendation

https://blog.csdn.net/q871063970/article/details/86648386

 win32api.PostQuitMessage()     https://www.cnblogs.com/xiaowuyi/archive/2012/03/15/2398665.html

Python3按照 pyhook，pycom：

https://blog.csdn.net/xiaoliu5396/article/details/46457585

https://blog.csdn.net/dongfuguo/article/details/70226384#reply

这里建议安装pyhook3，之前的博客里有写过安装anaconda pyhook3

https://www.cnblogs.com/lqerio/p/12096710.html