#define _CRT_SECURE_NO_WARNINGS
#include<stdio.h>
#include<Windows.h>
#include<malloc.h>
char file_path[] = "C:\\CTF\\notepad.exe";
char save_path[] = "C:\\CTF\\extend_note.exe";
DWORD Fileread(char** Filebuffer) {
FILE* fp = NULL;
char* filebuffer = NULL;
int file_size = 0;
fp = fopen(file_path, "rb");
fseek(fp, 0, SEEK_END);
file_size = ftell(fp);
fseek(fp, 0, SEEK_SET);
filebuffer = (char*)malloc(file_size + 0x1000);
fread(filebuffer, file_size, 1, fp);
fclose(fp);
*Filebuffer = filebuffer;
return file_size+0x1000;
}
DWORD kuodajie(int x,char *filebuffer) {
PIMAGE_DOS_HEADER pDosHeader = NULL;
PIMAGE_NT_HEADERS pNTHeader = NULL;
PIMAGE_FILE_HEADER pPEHeader = NULL;
PIMAGE_OPTIONAL_HEADER32 pOptionHeader = NULL;
PIMAGE_SECTION_HEADER pSectionHeader = NULL;
pDosHeader = (PIMAGE_DOS_HEADER)filebuffer;
if (*((PDWORD)((DWORD)filebuffer + pDosHeader->e_lfanew)) != IMAGE_NT_SIGNATURE)
{
printf("不是有效的PE文件\n");
return 0;
}
pNTHeader = (PIMAGE_NT_HEADERS)((DWORD)filebuffer + pDosHeader->e_lfanew);
pPEHeader = (PIMAGE_FILE_HEADER)((DWORD)pNTHeader + 4);
pOptionHeader = (PIMAGE_OPTIONAL_HEADER32)((DWORD)pPEHeader + IMAGE_SIZEOF_FILE_HEADER);
pSectionHeader = (PIMAGE_SECTION_HEADER)((DWORD)pOptionHeader + pPEHeader->SizeOfOptionalHeader);
PIMAGE_SECTION_HEADER endsectionheader = pSectionHeader + pPEHeader->NumberOfSections-1;
endsectionheader->Misc.VirtualSize += 0x1000;
endsectionheader->SizeOfRawData += 0x1000;
pOptionHeader->SizeOfImage += 0x1000;
FILE* fp = NULL;
fp = fopen(save_path, "wb");
fwrite(filebuffer, 1, x, fp);
fclose(fp);
return 0;
}
DWORD extend() {
char* filebuffer = NULL;
int x = Fileread(&filebuffer);
kuodajie(x, filebuffer);
return 0;
}
int main() {
extend();
return 0;
}