代码远程注入关键段
2013-02-06 00:10
330 查看
HANDLE handleProcess = OpenProcess(PROCESS_CREATE_THREAD|PROCESS_VM_OPERATION|PROCESS_VM_WRITE , FALSE , dwProcessId); //param char szBuff[10]={0}; *(DWORD*)szBuff = 1000; void* pDataRemote = VirtualAllocEx(handleProcess,0,sizeof(szBuff),MEM_COMMIT|MEM_RESERVE,PAGE_EXECUTE_READWRITE); WriteProcessMemory(handleProcess,pDataRemote,szBuff,sizeof(szBuff),NULL); //fun DWORD cbCodeSize = (LPBYTE)InjectFunEnd - (LPBYTE)InjectFun; PDWORD pCodeRemote = (PDWORD)VirtualAllocEx(handleProcess,0,cbCodeSize,MEM_COMMIT|MEM_RESERVE,PAGE_EXECUTE_READWRITE); WriteProcessMemory(handleProcess,pCodeRemote,&InjectFun,cbCodeSize,NULL); HANDLE hThread = CreateRemoteThread(handleProcess,NULL,0,(LPTHREAD_START_ROUTINE)pCodeRemote,pDataRemote,0,NULL); DWORD dwExtCode; if (hThread) { WaitForSingleObject(hThread,INFINITE); GetExitCodeThread(hThread,&dwExtCode); printf("return %d",dwExtCode); //TRACE("return %d",dwExtCode); CloseHandle(hThread); } VirtualFreeEx(handleProcess,pCodeRemote,cbCodeSize,MEM_RELEASE); VirtualFreeEx(handleProcess,pDataRemote,sizeof(szBuff),MEM_RELEASE); CloseHandle(handleProcess);
相关文章推荐
- 经过测试的 可以使用的远程注入代码!!!!!我的VC里面缺少一个stdafx.h需要拷贝一个到程序
- EasyHook远程代码注入
- 游戏远程代码注入和动态连接库的使用
- Delphi利用CreateRemoteThread远程注入 详细 (非dll注入,是代码注入)
- 代码注入之远程线程篇
- 远程进程注入 - 把自己的代码注入explorer.exe
- (学习记录)代码注入之远程线程篇
- 代码注入之远程线程篇
- 基于visual c++之windows核心编程代码分析(18)远程代码注入执行
- DLL远程注入代码
- 为远程注入代码关闭GS保护
- ring3层面函数HOOK从头来之(一)——无dll远程进程代码注入
- 代码注入之远程线程篇
- 游戏远程代码注入和动态连接库的使用
- 远程注入代码,远程调用Call
- 实现远程代码注入
- 远程注入代码
- 代码注入之远程线程篇
- 今天复习的是远程注入,废话不说,贴代码~
- 使用CreateRemoteThread把代码远程注入指定exe执行