Sign in to follow this  
Followers 0
farkam

ASM injection

5 posts in this topic

#1 ·  Posted (edited)

Hey guys I am new to this forum, and I am trying to create a simple program that attaches to a process and changes a static addresses opcode.

for example search for the address: 004C22A7 and replace the opcode in that address with mov [esi+44],133, and then inject it. If this is not allowed I apologize and I will remove it.

Edited by farkam

Share this post


Link to post
Share on other sites



farkam,

Welcome to the AutoIt forum. ;)

I suggest you read the Forum Rules and decide yourself whether your question is permissible. If it is then someone here might be able to help - if not then please make sure that any future postings you make are acceptable. :)

M23


Any of my own code posted anywhere on the forum is available for use by others without any restriction of any kind._______My UDFs:

Spoiler

ArrayMultiColSort ---- Sort arrays on multiple columns
ChooseFileFolder ---- Single and multiple selections from specified path treeview listing
Date_Time_Convert -- Easily convert date/time formats, including the language used
ExtMsgBox --------- A highly customisable replacement for MsgBox
GUIExtender -------- Extend and retract multiple sections within a GUI
GUIFrame ---------- Subdivide GUIs into many adjustable frames
GUIListViewEx ------- Insert, delete, move, drag, sort, edit and colour ListView items
GUITreeViewEx ------ Check/clear parent and child checkboxes in a TreeView
Marquee ----------- Scrolling tickertape GUIs
NoFocusLines ------- Remove the dotted focus lines from buttons, sliders, radios and checkboxes
Notify ------------- Small notifications on the edge of the display
Scrollbars ----------Automatically sized scrollbars with a single command
StringSize ---------- Automatically size controls to fit text
Toast -------------- Small GUIs which pop out of the notification area

 

Share this post


Link to post
Share on other sites

#3 ·  Posted (edited)

It's a simple task using:

OpenProcess

WriteProcessMemory

CloseHandle

However you need to convert mov [esi+44],133 to its byte code.

In my opinion using some simple APIs is not against the rules.

Edited by D4RKON3

Share this post


Link to post
Share on other sites

It's a simple task using:

OpenProcess

WriteProcessMemory

CloseHandle

However you need to convert mov [esi+44],133 to its byte code.

In my opinion using some simple APIs is not against the rules.

So would I used normadmemory.au3?

Share this post


Link to post
Share on other sites

farkam,

Ignoring Moderators is a bad move - I asked you a question and you have not given an answer. Furthermore, as I cannot imagine that this does not break our rules I am locking the thread. ;)

Please read and abide by our Forum Rules when you post in future. :)

M23


Any of my own code posted anywhere on the forum is available for use by others without any restriction of any kind._______My UDFs:

Spoiler

ArrayMultiColSort ---- Sort arrays on multiple columns
ChooseFileFolder ---- Single and multiple selections from specified path treeview listing
Date_Time_Convert -- Easily convert date/time formats, including the language used
ExtMsgBox --------- A highly customisable replacement for MsgBox
GUIExtender -------- Extend and retract multiple sections within a GUI
GUIFrame ---------- Subdivide GUIs into many adjustable frames
GUIListViewEx ------- Insert, delete, move, drag, sort, edit and colour ListView items
GUITreeViewEx ------ Check/clear parent and child checkboxes in a TreeView
Marquee ----------- Scrolling tickertape GUIs
NoFocusLines ------- Remove the dotted focus lines from buttons, sliders, radios and checkboxes
Notify ------------- Small notifications on the edge of the display
Scrollbars ----------Automatically sized scrollbars with a single command
StringSize ---------- Automatically size controls to fit text
Toast -------------- Small GUIs which pop out of the notification area

 

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this  
Followers 0