个人中心
gpt4 book ai didi

C++ DLL 注入(inject)后不执行函数

转载 作者:太空狗 更新时间:2023-10-29 21:24:17 28 4
gpt4 key购买 nike

好吧,我刚才在 VB.net 中制作了一个 DLL 注入(inject)器。除了我的以外,它适用于任何 DLL。所以我知道问题出在 DLL 上。这是注入(inject)器的代码:

Private Function Inject(ByVal pID As Integer, ByVal dllLocation As String) As Boolean
    Dim hProcess As Integer = OpenProcess(&H1F0FFF, 1, pID)
    If hProcess = 0 Then
        Return False
        MessageBox.Show("Could not open process!")
    End If
    Dim dllBytes As Byte() = System.Text.Encoding.ASCII.GetBytes(dllLocation)
    Dim allocAddress As Integer = VirtualAllocEx(hProcess, 0, dllBytes.Length, &H1000, &H4)
    If allocAddress = Nothing Then
        Return False
        MessageBox.Show("Could not allocate the address!")
    End If
    Dim kernelMod As Integer = GetModuleHandle("kernel32.dll")
    Dim loadLibAddr = GetProcAddress(kernelMod, "LoadLibraryA")
    If (kernelMod = 0) Then
        MessageBox.Show("Could not get the Module")
        Return False
    End If
    If (loadLibAddr = 0) Then
        MessageBox.Show("get the Process address!")
        Return False
    End If
    WriteProcessMemory(hProcess, allocAddress, dllBytes, dllBytes.Length, 0)
    Dim libThread As Integer = CreateRemoteThread(hProcess, 0, 0, loadLibAddr, allocAddress, 0, 0)

    If libThread = 0 Then
        Return False
        MessageBox.Show("Error Creating thread!")
    Else
        WaitForSingleObject(libThread, 5000)
        CloseHandle(libThread)
    End If
    CloseHandle(hProcess)
    Threading.Thread.Sleep(1000)
    Return True
End Function

这会写入进程内存并创建一个远程线程。

现在我的项目有两个文件:头文件和 CPP 文件。

标题:

#ifdef MAINLIB_EXPORTS
#define MAINLIB_API __declspec(dllexport)
#else
#define MAINLIB_API __declspec(dllexport)
#endif

extern "C" MAINLIB_API DWORD TestFunction();

菲律宾共产党:

#define WIN32_LEAN_AND_MEAN

#include <windows.h>
#include <stdio.h>
#include "dll.h"
#include "Urlmon.h"

BOOL APIENTRY DllMain( HANDLE hModule, DWORD  ul_reason_for_call, LPVOID lpReserved)
{
        hModule;
        lpReserved;

    switch (ul_reason_for_call)
        {
                case DLL_PROCESS_ATTACH:
                case DLL_THREAD_ATTACH:
                case DLL_THREAD_DETACH:
                case DLL_PROCESS_DETACH:
                        break;
    }

    return TRUE;
}

DWORD TestFunction()
{     
        MessageBox(0, TEXT("LOL"), TEXT("LMAO"), MB_OK);
        return 1;
}

据我了解,这应该在注入(inject)时运行 TestFunction。但事实并非如此。我可以使用任何解决方案/有用的页面吗?

最佳答案

您的代码中没有任何内容指定需要调用 TestFunction。一旦 DLL 附加到进程,只有 DllMain 和需要初始化的全局对象被调用。处理DLL_PROCESS_ATTACH时需要调用TestFunction

DWORD TestFunction();

BOOL APIENTRY DllMain( HANDLE hModule, DWORD  ul_reason_for_call, LPVOID lpReserved)
{
    hModule;
    lpReserved;

    switch (ul_reason_for_call)
    {
    case DLL_PROCESS_ATTACH:
        TestFunction(); // < call TestFunction ONCE when dll is loaded
        break;

    case DLL_THREAD_ATTACH:
    case DLL_THREAD_DETACH:
    case DLL_PROCESS_DETACH:
        break;
    }

    return TRUE;
}

DWORD TestFunction()
{     
        MessageBox(0, TEXT("LOL"), TEXT("LMAO"), MB_OK);
        return 1;
}

关于C++ DLL 注入(inject)后不执行函数,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/16574333/

28 4 0
文章推荐: c# - 迁移到 OAuth 2.0 后获取 access_token 时出现问题
文章推荐: python - 从 Python 多处理访问 MySQL 连接池
文章推荐: c# - 我认为这个片段是 O(n^3) 是对的吗?
文章推荐: C++:调用 tuple_transpose 函数时没有匹配的函数调用
太空狗
个人简介

我是一名优秀的程序员,十分优秀!

滴滴打车优惠券免费领取
滴滴打车优惠券
Copyright 2021 - 2024 cfsdn All Rights Reserved 蜀ICP备2022000587号
广告合作:1813099741@qq.com 6ren.com