blob: 69857168ecb7d8fb2200661e6cacd3cd07c20cc4 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
|
SecurityWrapper {
Start( ) // Dispatch security thread to periodically check for blacklisted processes.
Patch( ) // Bytepatch often abused functions to call ExitProcess directly.
Check( ) // Check if dummy functions have been bytepatched (OpenProcess, WriteProcessMemory, VirtualQuery)
}
RemoteCodeParameters {
m_dwEndScene
m_dwEndSceneOrig
//m_dwImportCode
m_dwEntryPoint
m_dwCheatHeader
m_dwVirtualProtect
}
RemoteCodeServer {
Start( RemoteCodeParameters *Parameters )
GetBytes( )
}
RemoteCodeClient {
Start( ByteArray &RemoteCode )
Dispatch( )
}
RemoteInjectionServer {
Start( ByteArray &DllData )
ProcessRelocation( uint32_t RemoteAddress )
ProcessHeader( RemoteHeader *Header )
GetBytes( )
}
RemoteInjectionClient {
Start( RemoteProcess &Process )
AllocateMap( uint32_t SizeOfImage )
WriteToMap( ByteArray &Data )
}
|
