google-site-verification: googlebaca44933768a824.html Remote inject module from byte array - Old Royal Hack Forum

Announcement

Collapse
No announcement yet.

Remote inject module from byte array

Collapse
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
    #1

    Remote inject module from byte array

    Here is another way to "map" a module into a target process.

    This method will not try to replicate "LoadLibrary" it will change some procedures of the function itself and by doing this your stream is initialized normally by the system and there is no stress with floating point or crt issues.

    /*
    CONCEPT BASED ON ( nologin )
    > I DIDNT MANAGE TO FORCE NTOPENFILE TO RETURN A VALID FILEHANDLE OF A NON EXISTANT FILE...
    ONLY WAY I FIGURE OUT IS BY NOT GOING AGAINST NATURE AND POINTING IT TO A DUMMY MODULE ON HD.

    CREDITS:
    > nologin( Concept )
    > Azorbix( Detours )
    > ntKid( Coder )
    */
    Attached Files
    sigpic
    Tags: None
    #2
    Re: Remote inject module from byte array

    thanks,
    recently did something similar too.






    gibs coins @
    1KatP9B8KG7mvcoFhdLGua1isG88nYZE8C

    Comment

      #3
      Re: Remote inject module from byte array

      Originally posted by νзηοма View Post
      thanks,
      recently did something similar too.
      Rifk, if this shit is confusing, your stuff is that to the max. Unless you've done something lately I didn't know about, if not your manual mapping stuff is awesome AND CONFUSING AS FUCK [noparse] :D [/n??rse]
      lolmaoman: Germans are born with a lifetime x22 login engraved into their birth certificates. True story.
      I DONT HAVE TEAMVIEWER AND IM NOT GOING TO GIVE ANY 24/7 ONLINE SUPPORT VIA STEAM, XFIRE OR OTHER IM PROGRAMS SO DONT BOTHER ASKING. THANKS.

      Comment

        #4
        Re: Remote inject module from byte array

        Originally posted by mencore View Post
        Rifk, if this shit is confusing, your stuff is that to the max. Unless you've done something lately I didn't know about, if not your manual mapping stuff is awesome AND CONFUSING AS FUCK :D
        yup it's more recent than "manual map" dll_map class and nothing is posted 'yet'.
        it was made for allowing me to remove the 'injector/downloader' second module that the client originally injected in the target to download fix and resume the hack,
        now the client download write fix and resume shit on it's own using a similar but different method than that(and yes i plan to release 'who knows when' but will).






        gibs coins @
        1KatP9B8KG7mvcoFhdLGua1isG88nYZE8C

        Comment

        Previous template Next
        Working...
        X

        We process personal data about users of our site, through the use of cookies and other technologies, to deliver our services, personalize advertising, and to analyze site activity. We may share certain information about our users with our advertising and analytics partners. For additional details, refer to our Privacy Policy.

        By clicking "I AGREE" below, you agree to our Privacy Policy and our personal data processing and cookie practices as described therein. You also acknowledge that this forum may be hosted outside your country and you consent to the collection, storage, and processing of your data in the country where this forum is hosted.

        I Agree