-
Notifications
You must be signed in to change notification settings - Fork 3
Expand file tree
/
Copy pathShellcodeInjector.h
More file actions
44 lines (40 loc) · 957 Bytes
/
ShellcodeInjector.h
File metadata and controls
44 lines (40 loc) · 957 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
#include <Windows.h>
#pragma once
class ShellcodeInjector
{
public:
ShellcodeInjector(void);
bool Inject(INT pid);
bool setShellcode(BYTE* bShellcode, UINT length);
~ShellcodeInjector(void);
private:
int shellcodeLength;
BYTE *bpShellcode;
HANDLE NtCreateThreadEx(HANDLE hProcess, LPVOID lpRemoteThreadStart, LPVOID lpRemoteCallback);
HANDLE __CreateRemoteThread(HANDLE hProcess, LPVOID lpRemoteThreadStart, LPVOID lpRemoteCallback);
};
typedef struct
{
ULONG Length;
ULONG Unknown1;
ULONG Unknown2;
PULONG Unknown3;
ULONG Unknown4;
ULONG Unknown5;
ULONG Unknown6;
PULONG Unknown7;
ULONG Unknown8;
} UNKNOWN;
typedef DWORD WINAPI NtCreateThreadEx_PROC(
PHANDLE ThreadHandle,
ACCESS_MASK DesiredAccess,
LPVOID ObjectAttributes,
HANDLE ProcessHandle,
LPTHREAD_START_ROUTINE lpStartAddress,
LPVOID lpParameter,
BOOL CreateSuspended,
DWORD dwStackSize,
DWORD Unknown1,
DWORD Unknown2,
LPVOID Unknown3
);