Hey,
since i know it’s quite difficult for you to integrate a antikeylogger driver sys compatible with the kernel for windows 11 (12 soon) i would like to introduce you a manufacture from www.schiffer.tech wiich is in my own opinion a good one and verry usefull for compagny too.
the name of the soft is Ghostpress version 2.6 → 06/05/2024 20:49:18
they are dying, but are well compatible with windows 11 (2.6.13 → SHA 256, 04/06/2024)
what do you think ?
have a nice day ^^
We will check it out. Do you know if it works correctly on the latest Windows versions, or only on older Windows versions? Did they have an issues lately with antikeylogging at all or has it been pretty solid with all the Windows latest updates?
This app (Ghostpress) was already mentioned in another thread, the one about SpyShelter’s keystroke encryption missing feature. Basically, this app uses another method to hide keystrokes from other apps, it uses global hooking, and no driver is needed.
Thank you for posting this. I will share this project with our team so they can investigate and see if the method used here is not disabled in the latest Windows, or if there are plans to disable that technique soon.
I did some searching online with several different tools, and it looks like some of these things that are used with this project are planned to be disabled by Microsoft in the future, unless I misunderstood something.
Back : can you be more explicit, what research you have made and where please ?
for ur info i do not programming, but i can read program, law, security and privacy behind all publicly developped programming language.
i found this from my side : → SetWindowsHookExW function (winuser.h) - Win32 apps | Microsoft Learn (it’s seem’s that will be soon a depricated function yes, but already changed too if you scroll the web page).
I used an AI tool with search, then posted the link and asked if there are plans for this to continue to be working with Windows, or if there are plans to disable it. The tool gave links to show that it would be disabled, but I didn’t keep the links. If I understand correctly you found the same?
yes you understand well, but this is not a correct way to search for information,
the correct way is to ask directly to the provider 
but it’s ok, case closed for me in this topic.
I would be surprised if Windows would remove a basic function like global hooking, I really doubt it. But perhaps you can indeed post the information that you found?
Global hooking is related to code injection, many system utilities and security tools rely on it. Sadly enough, a lot of malware relies on it too.
However, I do know that Microsoft is working on a new Windows design (triggered by the CrowdStrike incident), that allows security tools to run in usermode, this means that they won’t have to rely on a system driver. But global hooking can be done from usermode too, so I doubt they will remove it.
Yes, you are correct. I just searched again and did not find evidence that Microsoft is completely removing global hooking.
Yes exactly, in fact, I think global hooking will actually become more important if drivers are fased out. Because you still need a way to control/monitor other processes.
But I don’t think it will be easy to redesign AV’s to run in usermode. They are basically trying to copy macOS, but I think we won’t see this stuff until Windows 12. I also wonder if it will weaken security for the sake of stability.
Wow, I really hope not. I worry Windows will be turned into something like iOS/Android where you can only make apps that make or send photos, messengers, and games… no interesting monitoring tools or utilities anymore.
Before starting this project we checked out Android in detail and found you won’t be able to even make a useful resource monitor on the latest Android versions, but maybe that changed… not sure.