createremotethread

GetModuleHandle(), for a DLL in another process

南楼画角 提交于 2019-12-01 07:36:40
问题 The title explains this all really, I have a process tapping into another process. I need to be able to GetModuleHandle, on this program for a certain DLL which isn't Windows standard, and I don't have the source code to the main program. I need to use it to call an exported function with GetProcAddress and in the end use it in CreateRemoteThread to remotely start a task on that program. Is there anyway I can get a ModuleHandle from another program, instead of the local program it is creating

Would ASLR cause friction for the address with DLL injection?

半世苍凉 提交于 2019-11-29 11:37:45
I was reading about the DLL injection technique, and I had this question in mind. Let us assume we want to inject a DLL into a destination process in Windows 7 which has ASLR enabled for kernel32.dll So any piece of the injected code can't use any winapi or any system call since the address of let's say loadLibrary function in the injector code will differ from the address loadLibrary in the destination process, Won't it ? So such a call to CreateRemoteThread won't work: CreateRemoteThread(hProcess, NULL, 0, (LPTHREAD_START_ROUTINE) ::GetProcAddress(hKernel32, "LoadLibraryA" ), pLibRemote, 0,

Would ASLR cause friction for the address with DLL injection?

心已入冬 提交于 2019-11-28 05:10:49
问题 I was reading about the DLL injection technique, and I had this question in mind. Let us assume we want to inject a DLL into a destination process in Windows 7 which has ASLR enabled for kernel32.dll So any piece of the injected code can't use any winapi or any system call since the address of let's say loadLibrary function in the injector code will differ from the address loadLibrary in the destination process, Won't it ? So such a call to CreateRemoteThread won't work: CreateRemoteThread
订阅 createremotethread