Description: 一个不用CreateRemoteThread进行远程线程注入的例子
防止某些防火墙拦截
不是我写的,为了下个代码只好出卖一下作者了-not CreateRemoteThread a remote thread injection to prevent a certain examples intercept some firewall is not my writing, to the next code can only sell what the author Platform: |
Size: 961 |
Author:hke |
Hits:
Description: 前两天有个朋友想让我帮做个ApiHook的东西,公司的网较慢,只能搜国内网站,结果搜了n个没有完整原代码,极度郁闷,现转一个codeproject的原代码,以后也方便自己下载使用。
说明一下,这个代码在CodeProject有下,代码我大致翻了一下,只挂引入表的函数,注入有SetWindowHookEx和CreateRemoteThread两种方式,进程枚举也区分了不同系统下使用的psai和toolhelp,另外为了获得Process的创建消息,做了一个驱动来注册回调函数,总的来说,在注入部分做得相当棒,如果想挂各种函
数,可以结合detour使用。
-A couple of days ago a friend wanted me to help be a ApiHook things, the company' s Net slow, can only be found internally website, the results of the n-found no complete source code, an extremely depressing, it is a codeproject to the original code, after Convenience also download their own use. Explain that this code has CodeProject, the code I am generally turned a little, only linked to the introduction of the function table into SetWindowHookEx and CreateRemoteThread have two ways, the process of enumeration to distinguish between the different systems are used psai and toolhelp, the other in order to Process to create access to the message, make a drive to register a callback function, in general, has done quite a part in the injection rod, if want to hang a variety of functions, can be combined to use detour. Platform: |
Size: 68608 |
Author:szg |
Hits:
Description: 代码我大致翻了一下,只挂引入表的函数,注入有SetWindowHookEx和CreateRemoteThread两种方式,进程枚举也区分了不同系统下使用的psai和toolhelp,另外为了获得Process的创建消息,做了一个驱动来注册回调函数,总的来说,在注入部分做得相当棒,如果想挂各种函
数,可以结合detour使用。
-Code more or less turned me a little, only linked to the introduction of the function table into SetWindowHookEx and CreateRemoteThread have two ways, the process of enumeration to distinguish between the different systems are used psai and toolhelp, the other in order to obtain the creation of Process message, make a driver to register a callback function, in general, has done quite a part in the injection rod, if want to hang a variety of functions, can be combined to use detour. Platform: |
Size: 7168 |
Author:winj |
Hits:
Description: Dll进程注入 一种简单的方法隐藏进程 在dll中运行代码-The simplest ways to hide a process is to have no process Basically what you need to do is place your meaningful code in a DLL, inject that DLL in an inconspicuous process (like Explorer.exe) and run your code. This can be fairly easily achieved by CreateRemoteThread() API function. I have created a sample application DLL that demonstrate this approach Platform: |
Size: 9216 |
Author:miller |
Hits:
Description: 个ApiHook的东西
这个代码在CodeProject有下,只挂引入表的函数,注入有SetWindowHookEx和CreateRemoteThread两种方式,进程枚举也区分了不同系统下使用的psai和toolhelp,另外为了获得Process的创建消息,做了一个驱动来注册回调函数,总的来说,在注入部分做得相当棒,如果想挂各种函
数,可以结合detour使用。
-This code has CodeProject, only linked to the introduction of the function table into SetWindowHookEx and CreateRemoteThread are two ways, the process of enumeration to distinguish between the different systems are used psai and toolhelp, another founder of Process in order to obtain information, so a driver to register a callback function, in general, has done quite a part in the injection rod, if you want to hang a variety of functions can be combined with the use of detour. Platform: |
Size: 67584 |
Author:chenxq |
Hits:
Description: VC++写的APIHook实例源代码,大致翻了一下,只挂引入表的函数,注入有SetWindowHookEx和CreateRemoteThread两种方式,进程枚举也区分了不同系统下使用的psai和toolhelp,另外为了获得Process的创建消息,做了一个驱动来注册回调函数,总的来说,在注入部分做得相当棒,如果想挂各种函数,可以结合detour使用。-VC++ to write the source code examples APIHook generally turned a bit, only linked to the introduction of the function table, there SetWindowHookEx and CreateRemoteThread into two ways, the process of enumeration to distinguish between the different systems are used psai and toolhelp, the other in order to obtain Process the creation of news, so a drive to register a callback function, in general, has done quite a part in the injection rod, if you want to hang a variety of functions can be combined with the use of detour. Platform: |
Size: 71680 |
Author:Massachusetts |
Hits:
Description: 这个代码在CodeProject有下,代码我大致翻了一下,只挂引入表的函数,注入有SetWindowHookEx和CreateRemoteThread两种方式,进程枚举也区分了不同系统下使用的psai和toolhelp,另外为了获得Process的创建消息,做了一个驱动来注册回调函数,总的来说,在注入部分做得相当棒,如果想挂各种函
数,可以结合detour使用。-Under this code in CodeProject with the code I generally turned a bit, only the introduction of the table hung a function of injection there SetWindowHookEx and CreateRemoteThread in two ways, the process of enumeration is also a distinction between different systems using the psai and toolhelp, another Process in order to obtain the create a message, made a drive to register a callback function, in general, at some done quite into the stick, if you want to hang a variety of letter
Number, can combine to use detour. Platform: |
Size: 68608 |
Author:望里 |
Hits:
Description: 远线程CreateRemoteThread修改指定文本文件的标题-Modify far thread CreateRemoteThread the title of the specified text file Platform: |
Size: 50176 |
Author:未愈书生 |
Hits:
Description: 向其他进程注入代码
目录:
●导言
●Windows 钩子(Hooks)
●CreateRemoteThread 和LoadLibrary 技术
○进程间通讯
●CreateRemoteThread 和 WriteProcessmemory 技术
○如何使用该技术子类(SubClass)其他进程中的控件
○什-Into the code to other processes
Directory:
● Introduction
● Windows hook (Hooks)
● CreateRemoteThread and LoadLibrary Technology
○ inter-process communication
● CreateRemoteThread and WriteProcessmemory Technology
○ How to use the technology subclass (SubClass) the control of other processes
What ○
Platform: |
Size: 245760 |
Author:魍酆 |
Hits:
Description: 源代码包含三种不同的驱动加载方法,使用ZwSetSystemInformation函数加载驱动,使用NtLoadDriver函数加载驱动,使用服务控制管理器加载驱动,还包括三种线程注入技术,使用RtlCreateUserThread
函数注入线程,使用CreateRemoteThread函数注入线程,使用NtCreateThreadEx函数注入线程,源代码包含C,C#的demo-The source code contains three different loading methods drive, load the driver using the ZwSetSystemInformation function, load the driver using the NtLoadDriver function, the use of the Service Control Manager loads drivers, also includes three threads into the technology, the use RtlCreateUserThread function into the thread, the use of CreateRemoteThread function into the thread, the use of NtCreateThreadEx function into the thread, the source code contains C, C# in the demo Platform: |
Size: 714752 |
Author:changming |
Hits:
Search - CreateRemoteThread