dll注入（DLL injection）.doc

dll注入（DLL injection） You are not logged in yet! | login to | to register | help CSDN download homepage information BBS blog search more CTO club students base training software research and development of cloud computing programmers ITeyeTUP charging mobile development. The first page resources classification list help advanced search. Download the channel classification resources network security technology DLL injection instance + tutorial DLL injection instance + tutorial resource size: 444KB Upload date: 2008-10-17 Resource integration: 10 points Download frequency: 82 Upload: hmy211 Label: DLL injection tutorial Sharing: Collect comments (1) to report my comments resources - Resource profile, there are many kinds of remote DLL injection method, is used by a lot of Trojan virus hidden process, because through the process loads the DLL is not shown in task manager. Here are a way of established using CreateRemoteThread remote thread injecting DLL. First of all, we have to improve their permissions, because of the distance into the inevitable to access to the target process of memory space, if not enough system permissions, will not be able to do anything. The following is the function is used to enhance we want permission to use. The function EnableDebugPriv: Boolean; var HToken: THandle; Tp: TTokenPrivileges; Rl: Cardinal; The begin Result: = false; / / open process token ring TOKEN_ADJUST_PRIVILEGES or TOKEN_QUERY OpenProcessToken (GetCurrentProcess (), HToken); / / get the unique ID of the process If lookupton evalue (nil, SeDebugPrivilege, tp. Privileges [0]. Luid) then The begin Tp. PrivilegeCount: = 1; Tp. Privileges [0]. Attributes: = SE_PRIVILEGE_ENABLED; / / adjust permissions Result: = AdjustTokenPrivileges (hToken, false, tp, SizeOf (tp), nil, rl); The end; The end; A brief introduction to two apis for OpenProcessToken () and AdjustTokenPrivileges () : OpenProcessToken () : gets a handle to the process access token. The function OpenProcessToken (