| View previous topic :: View next topic |
| Author |
Message |
Stylo
Grandmaster Cheater Supreme
![]() Reputation: 3
Joined: 16 May 2007
Posts: 1073
Location: Israel
|
 Posted: Tue Jul 27, 2010 4:44 am Post subject: Different types of dll injection |
 |
|
All I ever known so far is the basic way of injection which you write the dll'sname into the memory and load it using LoadLibrary, I believe that there are more complicated ways to inject and wondered i anyof u know
_________________
Stylo |
|
| Back to top |
|
 |
Jani
Grandmaster Cheater
![]() Reputation: 2
Joined: 29 Dec 2006
Posts: 804
|
| Posted: Tue Jul 27, 2010 6:31 am Post subject: |
|
|
The ones I could think of atm:AppInit_DLLs
SetWindowsHookEx
WriteProcessMemory & CreateRemoteThread
WriteProcessMemory & CreateRemoteThread & LoadLibrary Also, of course you can modify code, the exe or dlls loaded by the app and make them load DLLs you want. |
|
| Back to top |
|
|
Stylo
Grandmaster Cheater Supreme
![]() Reputation: 3
Joined: 16 May 2007
Posts: 1073
Location: Israel
|
| Posted: Tue Jul 27, 2010 2:24 pm Post subject: |
|
|
| Jani wrote: | The ones I could think of atm:AppInit_DLLs
SetWindowsHookEx
WriteProcessMemory & CreateRemoteThread
WriteProcessMemory & CreateRemoteThread & LoadLibrary Also, of course you can modify code, the exe or dlls loaded by the app and make them load DLLs you want. |
what exactly the differences between the two lasts?
They both call CreateRemoteThread, and I think u have to call LoadLibrary if u use it so it's bassically the same
_________________
Stylo |
|
| Back to top |
|
|
Dark Byte
Site Admin
 Reputation: 470
Joined: 09 May 2003
Posts: 25804
Location: The netherlands
|
| Posted: Tue Jul 27, 2010 3:12 pm Post subject: |
|
|
well, it could be he means loading the dll into memory manually and then call the entry point of the dll for initialization.
Of course, that can usually be ignored
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.
Like my help? Join me on Patreon so i can keep helping |
|
| Back to top |
|
|
atom0s
Moderator
 Reputation: 205
Joined: 25 Jan 2006
Posts: 8587
Location: 127.0.0.1
|
|
| Back to top |
|
|
justa_dude
Grandmaster Cheater
 Reputation: 23
Joined: 29 Jun 2010
Posts: 892
|
| Posted: Tue Jul 27, 2010 5:01 pm Post subject: |
|
|
| Can't you proxy a known import? |
|
| Back to top |
|
|
Jani
Grandmaster Cheater
![]() Reputation: 2
Joined: 29 Dec 2006
Posts: 804
|
| Posted: Wed Jul 28, 2010 11:04 am Post subject: |
|
|
| Stylo wrote: | | what exactly the differences between the two lasts? |
Yeah, as DB said, I meant doing the DLL loading manually. |
|
| Back to top |
|
|
atom0s
Moderator
Reputation: 205
Joined: 25 Jan 2006
Posts: 8587
Location: 127.0.0.1
|
| Posted: Sat Jul 31, 2010 12:14 am Post subject: |
|
|
| justa_dude wrote: | | Can't you proxy a known import? |
Yes you can, you can also add imports as well.
There are plenty of different methods to take if you are willing to put in the effort to do them.
_________________
- Retired. |
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
