mailing list archives
Reflective DLL Injection
From: Stephen Fewer <stephen_fewer () harmonysecurity com>
Date: Fri, 31 Oct 2008 17:58:02 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hello, Just released a short paper on Reflective DLL Injection.
Abstract: Reflective DLL injection is a library injection technique in
which the concept of reflective programming is employed to perform the
loading of a library from memory into a host process. As such the
library is responsible for loading itself by implementing a minimal
Portable Executable (PE) loader.
You can download the paper here:
And the PoC code here:
Support for Reflective DLL Injection has been added to Metasploit in the
form of a payload stage and a modified VNC DLL (both are currently in
the development tree).
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (MingW32)
-----END PGP SIGNATURE-----
Dailydave mailing list
Dailydave () lists immunitysec com
- Reflective DLL Injection Stephen Fewer (Nov 01)