20051026
Remote code injection has always been a popular topic with dozens of articles written about the subject. One of the preferred techniques involves the following steps :
- Allocate memory in the remote process using
VirtualAllocEx()
. - Copy the code to the allocated remote memory using
WriteProcessMemory()
. - Execute the remote code using
CreateRemoteThread()
.
The problem of this technique (as stated by several remote injection tutorials) is that the needed Windows functions don't exist across all Windows versions. The purpose of this library is to emulate the missing functions to allow to use the same code across all Windows versions.