Injex Framework - DLL And Injector And W/Advanced Hooking Techniques
Posts 1–6 of 6 · Page 1 of 1
Injex Framework - DLL And Injector And W/Advanced Hooking Techniques
Injex is comprised of two parts a DLL injector, and a DLL template that is to be edited and compiled. The template DLL comes with standard functionality to place hooks for function hooking in whatever it is injected into.
Supported Injection Methods:
Ritcher Method - Injects your DLL into the target application by creating a thread on LoadLibrary?. This causes your DLL to be dynamically loaded.
Supported Hooking Methods:
Entry Stub Trampoline Hooks (Advanced Code Overwriting) - Places a jump in the original function to jump to your function, but saves off the original bytes for unhooking and also for your personal use. This allows you to use the "original" function, while forcing the hooked application to use w/e you specified. This is a rare and powerful hooking method. It employs a disassembly engine to determine how many bytes of the original function to keep and where to jump back to.
Import Address Table Hooks - Replaces the pointers in the import address table of the hooked application. This makes it so that when the application calls an imported function, it calls your function instead. This doesn't alter the original, and allows you to still use the original function. This is a very common hooking method.
Compatible Operating Systems:
Windows 2000 Professional (All Versions & SP3/SP4 after updates)
Windows XP (All Versions & Service Packs)
Windows Server 2003 (All Versions & Service Packs)
Windows Vista (All Versions & Service Packs)
Windows 7 (All Versions & Service Packs)
Windows Server 2008 (All Versions & Service Packs)
Windows 8 (Only Tested on Developer Preview)
Not Tested On:
Windows Advanced Server 2000 (It probably still works on SP3/4+)
I did't post a binary, you don't need one... You should edit the source and compile it to do w/e you want. The DLL source that comes with the current version 0.3 is an example that uses Import Address Table hooks to hook WriteFile in w/e it's injected into. For an example of how to use the advanced code overwriting techniques, look at the DLL source for 0.2.
I have been thinking about making this for a long time, and finally got around to it... Please let me know what you guys think about it, post comments/questions/bugs/feature requests/etc here. I have tested it quite a bit and haven't found any major bugs.
This causes your Dynamically loaded library to be dynamically loaded.
Who knew?
Originally Posted by Void
This causes your Dynamically loaded library to be dynamically loaded.
Who knew?
Dynamically Linked Library
C'mon Dave, you're getting sloppy. Same shit, I know, I'm just bored as hell
Originally Posted by Jason
Dynamically Linked Library
C'mon Dave, you're getting sloppy. Same shit, I know, I'm just bored as hell
Oh my god. LOL.
That's embarrassing.
Regardless, same shit.
Thanks for your insight. However, I was hoping to get an opinion on the framework itself, not a critique of the description I posted. I apologize that I was not clear on that . Thanks in advance.
Also, I thought it sounded strange when I was reading over it as well. I wasn't sure how to rephrase it, and I also figured nobody would care.
I was hoping to get an opinion on the framework itself