Skip to content

lidorco/DllInjection

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

38 Commits
DllInjection
DllInjection
 
 
IATPatching
IATPatching
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 

Repository files navigation

DllInjection

This repository is an exercise at Windows internals code injections. The exercise was given during malicious code course which delivered at Ben Gurion University.

The Exercise

This exercise contains 2 parts:

DLL Injection

In this part we wrote a DLL which change the title of the current process. Then we wrote an executeable which inject this DLL to process with PID given.

IAT Patching

In this part we wrote a DLL which patch the Import Address Table of the current process. We found common SSH client process, that if we replace RegSetValueExW WinApi with our code, we can get the hashed passwords which the user use to connect to SSH servers! Then we wrote an executeable which inject this DLL to the SSH client process.

About

Windows code injection exercise

Resources

Readme
Activity

Stars

3 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages