Jump to content

Photo

Can provide a hook endscan demo?


  • Please log in to reply
8 replies to this topic

#1 redcatH Posted 13 October 2013 - 01:30 PM

redcatH

    Soldier

  • Members
  • Pip
  • 9 posts

Hi,guys.

Can provide a hook endscan demo?

I do not understand possible? not injected asm method , Similar to C + + jmp my method?  c# method ?

thanks you.


  • Back to top
  • Report

#2 ZenLulz Posted 13 October 2013 - 02:06 PM

ZenLulz

    Lead Developer

  • Administrators
  • 67 posts
  • LocationSwitzerland

Hi, redcatH,

 

Actually, MemorySharp does not offer a fully wrapped way to install a hook in a remote process. This feature is planned in future releases of the library.

 

Nevertheless, it's always possible, but it requires to write an assembly stub and manually make the trampoline. You can find how to write an assembly hook on the OwnedCore forums.

 

cheers,

ZenLulz


ZenLulz

  • Back to top
  • Report

#3 redcatH Posted 13 October 2013 - 02:19 PM

redcatH

    Soldier

  • Members
  • Pip
  • 9 posts

Sad  :(

Hi, redcatH,

 

Actually, MemorySharp does not offer a fully wrapped way to install a hook in a remote process. This feature is planned in future releases of the library.

 

Nevertheless, it's always possible, but it requires to write an assembly stub and manually make the trampoline. You can find how to write an assembly hook on the OwnedCore forums.

 

cheers,

ZenLulz


  • Back to top
  • Report

#4 ZenLulz Posted 13 October 2013 - 03:11 PM

ZenLulz

    Lead Developer

  • Administrators
  • 67 posts
  • LocationSwitzerland

Quite the opposite, I think the idea that this feature will be developed is great. ;)

Also, MemorySharp offers a nice API to inject assembly code within a remote process.


ZenLulz

  • Back to top
  • Report

#5 redcatH Posted 13 October 2013 - 03:15 PM

redcatH

    Soldier

  • Members
  • Pip
  • 9 posts

Quite the opposite, I think the idea that this feature will be developed is great. ;)

Also, MemorySharp offers a nice API to inject assembly code within a remote process.

Expect  to use this great feature。time is money my friend, LOL :D


  • Back to top
  • Report

#6 ZenLulz Posted 13 October 2013 - 03:43 PM

ZenLulz

    Lead Developer

  • Administrators
  • 67 posts
  • LocationSwitzerland

Yeah right, I can link my PayPal for donations if you want since I'm making this library on my free time. :P

 

This is not so difficult to apply a hook, especially for reverse engineers who deal with assembly everyday. You should give it a try, this is really something interesting to do and I'm sure you can learn useful tricks. ;)

 

cheers,

ZenLulz


ZenLulz

  • Back to top
  • Report

#7 redcatH Posted 14 October 2013 - 01:50 PM

redcatH

    Soldier

  • Members
  • Pip
  • 9 posts

@ZenLuLz    Did not understand what you say, my English is very poor, sorry :(


  • Back to top
  • Report

#8 ZenLulz Posted 14 October 2013 - 06:03 PM

ZenLulz

    Lead Developer

  • Administrators
  • 67 posts
  • LocationSwitzerland

Just saying that making the work yourself using assembly code is more enriching than using an all wrapped module. ^_^


ZenLulz

  • Back to top
  • Report

#9 redcatH Posted 17 October 2013 - 05:03 AM

redcatH

    Soldier

  • Members
  • Pip
  • 9 posts

Just saying that making the work yourself using assembly code is more enriching than using an all wrapped module. ^_^

look forward to   [Pending] Hook mechanism    :lol: 


  • Back to top
  • Report




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users