美文网首页
代码注入

代码注入

作者: Fa1se003 | 来源:发表于2017-05-23 19:58 被阅读16次
    image.png 
    #include "stdafx.h"
#include <windows.h>
#include <stdio.h>

typedef int (__stdcall *PMESSAGEBOX)(HWND ,LPCTSTR ,LPCTSTR ,UINT);


typedef struct _CODE_ARGS_
{
    PMESSAGEBOX     pMessageBox;
    HWND            hWnd;         
    LPCTSTR         lpText;   
    LPCTSTR         lpCaption;
    UINT            uType;
}CODE_ARGS;


DWORD Inject_Fun(CODE_ARGS *pCodeArgs)
{
    pCodeArgs->pMessageBox(pCodeArgs->hWnd,pCodeArgs->lpText,pCodeArgs->lpCaption,1);
    return 0;
}
void Inject_Fun_End(void)
{

}

int main(int argc, char* argv[])
{
    DWORD PID = 0;
    puts("Input Target Process ID:\n");
    scanf("%u",&PID);
    HANDLE hProcess = OpenProcess(PROCESS_ALL_ACCESS,FALSE,PID);
    DWORD dw = GetLastError();
    void *pRemoteAddr = VirtualAllocEx(hProcess,NULL,1024,MEM_COMMIT,PAGE_EXECUTE_READWRITE);//开辟空间
    CODE_ARGS Code_Args = {0};

    Code_Args.pMessageBox = (PMESSAGEBOX)GetProcAddress(LoadLibrary("User32.dll"),"MessageBoxA");
    Code_Args.hWnd = NULL;
    Code_Args.uType = 1;

    char TextArr[] = "Hello Boys I Come Here!";
    char CaptionArr[] = "Code Inject!";
    DWORD uType = 1;
    void *pRemoteArgAddr = NULL;
    void *pRemoteProc = NULL;

    
    DWORD dwOffset = 0,dwWriteByte = 0;

    //写入结构体两个字符串
    Code_Args.lpText = (char *)pRemoteAddr;
    WriteProcessMemory(hProcess,(void *)((DWORD)pRemoteAddr + dwOffset),TextArr,strlen(TextArr)+1,&dwWriteByte);
    dwOffset += dwWriteByte;

    Code_Args.lpCaption = (char *)((DWORD)pRemoteAddr + dwOffset);
    WriteProcessMemory(hProcess,(void *)((DWORD)pRemoteAddr + dwOffset),CaptionArr,strlen(CaptionArr)+1,&dwWriteByte);
    dwOffset += dwWriteByte;


    //写入结构体
    pRemoteArgAddr = (BYTE *)pRemoteAddr + dwOffset;
    WriteProcessMemory(hProcess,pRemoteArgAddr,&Code_Args,sizeof(Code_Args),&dwWriteByte);
    dwOffset += dwWriteByte;


    //写入函数机器码 写入长度在release下好用,debug版本需要修复
    pRemoteProc = (BYTE *)pRemoteAddr + dwOffset;
    WriteProcessMemory(hProcess,pRemoteProc,(void *)Inject_Fun,(DWORD)Inject_Fun_End - (DWORD)Inject_Fun,&dwWriteByte);
    
    DWORD TID = 0;
    HANDLE hRemotethread = CreateRemoteThread(hProcess,NULL,0,(LPTHREAD_START_ROUTINE)pRemoteProc,pRemoteArgAddr,0,&TID);
    
    WaitForSingleObject(hRemotethread,INFINITE);
    CloseHandle(hRemotethread);
    VirtualFreeEx(hProcess,pRemoteAddr,0,MEM_RELEASE);
    CloseHandle(hProcess);
    return 0;
}

    相关文章

      网友评论

          本文标题:代码注入

          本文链接:https://www.haomeiwen.com/subject/kcmgxxtx.html

          延伸阅读

          深度阅读

          • 您也可以注册成为美文阅读网的作者,发表您的原创作品、分享您的心情!

          栏目导航

          热点阅读

          关于我们|服务条款|联系我们|代码注入|投稿指南|网站地图|RSS订阅|排版工具|手机版

          提供经典美文摘抄,优美散文欣赏,现代诗歌精选,短篇小说,心情随笔,表白情书范文,故事会在线阅读欣赏

          Copyright © 2014-2023 Haomeiwen.com All Rights Reserved. 好美文阅读网 版权所有

          备案信息:桂公网安备 45052102000051号 · 桂ICP备13007215号-3

          本站所收录作品、热点评论等信息部分来源互联网,目的只是为了系统归纳学习和传递资讯

          所有作品版权归原创作者所有,与本站立场无关,如不慎侵犯了你的权益,请联系我们告知,我们将做删除处理!