You are here : Home » Learning security » Operating Systems » Windows » Code injection series » Code Injection - Process PE Injection Basics

Code Injection - Process PE Injection Basics

Code injection series part 1

D 1 September 2019     H 22:33     A Emeric Nasi     C 0 messages

agrandir


Prerequisites: This document requires some knowledge about Windows system programming.
License : Copyright Emeric Nasi (@EmericNasi), some rights reserved
This work is licensed under a Creative Commons Attribution 4.0 International License.
Creative Commons License

I Introduction

In this first part of the injection series, I am presenting how to inject and run code in a target process on Windows using the method called PE injection. This method allows a .exe file to inject and run itself in the memory of another process. This is a refresh of the 2014 post working on Windows 10. You can view it as a simple introduction to PE injection for beginners.

If you wish to read more about this, the document can be downloaded in a PDF format

PDF - 374.1 kb

Also in this section

2 September 2020 – Code Injection - Weaponize GhostWriting Injection

1 December 2019 – Code Injection - Disable Dynamic Code Mitigation (ACG)

1 December 2019 – Code Injection - Exploit WNF callback

5 September 2019 – Code Injection - Bypass start address protection

Any message or comments?
pre-moderation

This forum is moderated before publication: your contribution will only appear after being validated by an administrator.

Who are you?
Your post

Search

Also in this section

1.  Code Injection - Weaponize GhostWriting Injection

2.  Code Injection - Disable Dynamic Code Mitigation (ACG)

3.  Code Injection - Exploit WNF callback

4.  Code Injection - Bypass start address protection

5.  Code Injection - Process PE Injection Basics

Most popular

1.  Digging passwords in Linux swap

2.  Launch shellcodes and bypass Antivirus using MacroPack Pro VBA payloads

3.  Bypass Defender and other thoughts on Unicode RTLO attacks

4.  Hacking around HTA files

5.  PE injection explained

5 random articles

1.  Report bugs

2.  Glyptodon-1.2 release 2

3.  cve-2014-7822 Linux Kernel D.O.S POC

4.  Hide files using SSDT hooking

5.  Hacking around HTA files

Sponsor

If you appreciate my work, you may help or reward with a contribution :)

Most recent articles

1 | 2 | 3 | 4 | 5

Recent comments

1 | 2 | 3 | 4 | 5

Latest news

2010-2023 Sevagas
Archives | | Contact

RSS 2.0 twitter linkedin facebook