blob: 722505629832ccdb1863fb1a2425532769f01088 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
|
SecurityWrapper {
Start( ) // Dispatch security thread to periodically check for blacklisted processes.
Patch( ) // Bytepatch often abused functions to call ExitProcess directly.
Check( ) // Check if dummy functions have been bytepatched (OpenProcess, WriteProcessMemory, VirtualQuery)
}
RemoteCodeParameters {
m_dwEndScene
m_dwEndSceneOrig
//m_dwImportCode
m_dwEntryPoint
m_dwCheatHeader
m_dwVirtualProtect
}
RemoteCodeServer {
Start( RemoteCodeParameters *Parameters )
GetBytes( )
}
RemoteProcess {
Start( const char *ProcessName )
GetProcess( )
Write( )
Read( )
Allocate( )
}
RemoteCodeClient {
Start( ByteArray &RemoteCode )
Dispatch( )
}
FileReader {
Start( const char *FileName )
GetBytes( )
}
RemoteInjectionServer {
Start( ByteArray &DllData )
ProcessRelocation( uint32_t RemoteAddress )
ProcessHeader( RemoteHeader *Header )
GetBytes( )
}
RemoteInjectionClient {
Start( RemoteProcess &Process )
AllocateMap( uint32_t SizeOfImage )
WriteToMap( ByteArray &Data )
}
|
