aboutsummaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
...
* shrinked Hunted by removing unused overheadToni Uhlig2019-09-30
|
* We need to unlink the VAD _after_ the MS CRT was initialized to prevent ↵Toni Uhlig2019-09-29
| | | | crashing the process.
* acrt and vcrt function stubsToni Uhlig2019-09-29
|
* changed platform toolset to v140 (MSVC 2015, Hunt uses same)Toni Uhlig2019-09-29
|
* more CRT functions..Toni Uhlig2019-09-29
|
* added sine more dynamically resolved functions from the CRTToni Uhlig2019-09-29
|
* introduced new dynamic symbol resolver for CRT functionsToni Uhlig2019-09-29
|
* relocation fixup used only 32bit deltas instead of 64botToni Uhlig2019-09-28
|
* added CMD symbol resolverToni Uhlig2019-09-28
|
* Hunt: search for gloabel env pointer via patternToni Uhlig2019-09-28
|
* pattern scanning works as expectedToni Uhlig2019-09-28
|
* added an extensible dynamic symbol resolver including support for injected DLLsToni Uhlig2019-09-28
|
* renaming stuffToni Uhlig2019-09-27
|
* added explicit struct constructorToni Uhlig2019-09-26
|
* map_file_* callbacks are now staticToni Uhlig2019-09-26
|
* improved map_file_data variable namingToni Uhlig2019-09-26
|
* removed unused libs in Hunted and disable Debug build in TestDLL completlyToni Uhlig2019-09-25
|
* Hunted fetches global env pointer and uses it in shellcode, implemented some ↵Toni Uhlig2019-09-25
| | | | CRT dynamic resolved functions in DLL
* shellcode saves now all register values to the stack and pops it after the ↵Toni Uhlig2019-09-24
| | | | LibEntry function was called
* added own DLL get proc address by LoadLibrary and GetProcAddress (maybe used ↵Toni Uhlig2019-09-24
| | | | in the future to find symbols)
* removed threaded version of LibEntry which will not work anyway w/o crt initToni Uhlig2019-09-24
|
* added shellcode comments and pattern scanning stubToni Uhlig2019-09-24
|
* support additional DLL search directories for LoadLibrary through user_dataToni Uhlig2019-09-24
|
* set IgnoreAllDefaultLibraries to NO for TestDLLToni Uhlig2019-09-24
|
* added pattern checker and memory mapping method callbacks and managment ↵Toni Uhlig2019-09-24
| | | | functions
* added function to verify PE header values and removed inlined functions from ↵Toni Uhlig2019-09-23
| | | | DLLHelper
* removed Win32 completly, obsolete IMHOToni Uhlig2019-09-23
|
* removed invalid conditionToni Uhlig2019-09-22
|
* Hunted TestDLL injection worksToni Uhlig2019-09-22
|
* fixed bug during import table function resolving, added public getter ↵Toni Uhlig2019-09-22
| | | | function for EntryPoint and BaseAddress
* DLL injection from CMD exampleToni Uhlig2019-09-22
|
* export LibEntryThreaded in TestDLLToni Uhlig2019-09-22
|
* added load and test library entry for DLLHelperToni Uhlig2019-09-22
|
* DLLHelper: added Has* functions to check availability of some data dirs, ↵Toni Uhlig2019-09-22
| | | | implemented copy PE header and sections function, fixed invalid VAlloc request size
* minimized DLL and using own entryToni Uhlig2019-09-22
|
* DLLHelper can now fixup relocationsToni Uhlig2019-09-22
|
* DLLHelper can now fixup other DLL imports and TestDLL links static against ↵Toni Uhlig2019-09-21
| | | | MSVCRT runtime
* example DLL mapping codeToni Uhlig2019-09-21
|
* DLLHelper can fix imports (does not work at the moment)Toni Uhlig2019-09-21
|
* do not rely on the exact size during VALLOC and do not manually calculate ↵Toni Uhlig2019-09-21
| | | | the page size (which was done wrong) since it is done by the OS
* missed MSVC project file changes in previous commitToni Uhlig2019-09-21
|
* moved DLLHelper.h to public header files directoryToni Uhlig2019-09-21
|
* added InitTargetMemory for allocating a memory block in the target process ↵Toni Uhlig2019-09-19
| | | | (cause we need the base address ASAP)
* added global env sig for HuntToni Uhlig2019-09-19
|
* DLLHelper loads DLL to memory and verifies its headersToni Uhlig2019-09-19
|
* added support for full DLL paths for MEM_MODULESToni Uhlig2019-09-19
|
* Merge branch 'master' of https://e35git.ddnss.org/redmonder/KMemDriverToni Uhlig2019-09-19
|\
| * updated READMEToni Uhlig2019-09-19
| | | | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* | added TestDLL suitable for manual mapping and integration test skeletonToni Uhlig2019-09-19
|/
* jump to RWX page and backToni Uhlig2019-09-18
|
Powered by cgit, Themed by Ted Yin.