Code injection series

A series of post about running foreign code in a Windows process. Including common protections bypass.

A few years ago I wrote a post about PE injection . Since then several people contacted me because they didn’t manage to make the code work on Windows 10 64bit. I went back to the code injection topic recently and decided to update my code. I also wanted to understand more about hooking and the possibilities when combining the two.
This is not going to be an extensive coverage of all the various code injection methods but rather a series of posts describing how to inject into a process such as a web browser, bypass protections, including OS protection, and hook interesting functions.

The last articles

Code Injection - Weaponize GhostWriting Injection
Published on 2 September 2020
by Emeric Nasi

Prerequisites: This document requires some knowledge about Windows system programming. Also, it is mandatory to be familiar with concepts presented in Code injection series part 1.

License : Copyright Emeric Nasi (@EmericNasi), some rights reserved

This work is licensed under a Creative (...)

Code Injection - Disable Dynamic Code Mitigation (ACG)
Published on 1 December 2019
by Emeric Nasi

Prerequisites: This document requires some knowledge about Windows system programming. Also, it is mandatory to be familiar with concepts presented in Code injection series part 1 and 2.

License : Copyright Emeric Nasi (@EmericNasi), some rights reserved

This work is licensed under a (...)

Code Injection - Exploit WNF callback
Published on 1 December 2019
by Emeric Nasi

Prerequisites: This document requires some knowledge about Windows system programming. Also, it is mandatory to be familiar with concepts presented in Code injection series part 1.

License : Copyright Emeric Nasi (@EmericNasi), some rights reserved

This work is licensed under a Creative (...)

Code Injection - Bypass start address protection
Published on 5 September 2019
by Emeric Nasi

Prerequisites: This document requires some knowledge about Windows system programming. Also, it is mandatory to be familiar with concepts presented in Code injection series part 1.

License : Copyright Emeric Nasi (@EmericNasi), some rights reserved

This work is licensed under a Creative (...)

Code Injection - Process PE Injection Basics
Published on 1 September 2019
by Emeric Nasi

Prerequisites: This document requires some knowledge about Windows system programming.

License : Copyright Emeric Nasi (@EmericNasi), some rights reserved

This work is licensed under a Creative Commons Attribution 4.0 International License.

I Introduction

In this first part of the (...)