Code injection series
A few years ago I wrote a post about PE injection . Since then several people contacted me because they didn’t manage to make the code work on Windows 10 64bit. I went back to the code injection topic recently and decided to update my code. I also wanted to understand more about hooking and the possibilities when combining the two.
This is not going to be an extensive coverage of all the various code injection methods but rather a series of posts describing how to inject into a process such as a web browser, bypass protections, including OS protection, and hook interesting functions.
Code Injection - Weaponize GhostWriting Injection
Lets talk about this code injection technique called GhostWriting that works by manipulating the register states of (...) Wednesday 2 September 2020, by Emeric Nasi
Code Injection - Disable Dynamic Code Mitigation (ACG)
How to disable Dynamic Code Mitigation Policy (ACG) to be able to inject code and deploy hooks into Microsoft Edge (...) Sunday 1 December 2019, by Emeric Nasi
Code Injection - Exploit WNF callback
In this post I am going to take the WNF code injection method described in https://modexp.wordpress.com/2019/06/15/4083/ Sunday 1 December 2019, by Emeric Nasi
Code Injection - Bypass start address protection
Over the year several mechanisms were developed by vendors to prevent code injection. A common mechanism is to (...) Thursday 5 September 2019, by Emeric Nasi
Code Injection - Process PE Injection Basics
In this first part of the injection series, I am presenting how to inject and run code in a target process on (...) Sunday 1 September 2019, by Emeric Nasi
