c++　内存加载Dll　

特点如下:

直接在内存中载入,无磁盘占用

支持加壳保护的dll , 平时用的最多的vmp ,其它壳子还请自己测试

无模块载入, 因为重写了loadlibary ,如需要请自己注册

支持注入到目标进程,前提请先使用相应权限打开目标

对原代码的修改如下:

使用内联汇编将原 c/c++的库调用 代替, 使得 注入代码可行

支持直接使用资源加载和注入

支持加载exe ,请自行 hook 某些函数 ,确保exe 正确运行

加入inline 注入方式

代码少量加花, 确保编译器最大优化无误

注入的示例代码(The characteristics are as follows:

Directly loaded in memory, diskless occupancy

Support shell protection DLL, usually the most used VMP, please own other shell test

No module loading, because loadlibary is rewritten, if necessary, please register yourself.

Support injection into the target process. First, use the corresponding permission to open the target.

The modifications to the original code are as follows:

The intranet assembly is used to replace the library call of the original c/c++, so that the injected code is feasible.

Support direct use of resource loading and injection

Support loading exe, please hook some functions to ensure that exe is running correctly.

Adding inline injection

Small amount of code is added to ensure maximum error of compiler.

Sample code injected)