BlackHat-Ashura / Inject-Hook-Unhook_POC Public

Notifications You must be signed in to change notification settings
Fork 4
Star 7

POC demonstrating DLL Injection, API Hooking and API Unhooking.

7 stars 4 forks Branches Tags Activity

Notifications

Name		Name	Last commit message	Last commit date
Latest commit History 4 Commits
Inject Me Hook Me		Inject Me Hook Me
Simple DLL		Simple DLL
Use Simple DLL		Use Simple DLL
LICENSE		LICENSE
README.md		README.md

Repository files navigation

Inject-Hook-Unhook_POC

POC demonstrating DLL Injection, API Hooking and API Unhooking.

How to use

1. Compile code in all the folders, i.e., "Use Simple DLL", "Simple DLL", "Inject Me Hook Me"

2. First run "Inject Me Hook Me.exe" and wait for first message box

3. Next run "Use Simple DLL.exe" with arguments as path to "Simple DLL.dll" and the PID of "Inject Me Hook Me.exe"

What's happening here?

The DLL is injected into the mentioned process and the MessageBoxW API is hooked. The process then unhooks the hooked API on the second attempt of running the hooked function.

About

POC demonstrating DLL Injection, API Hooking and API Unhooking.

Report repository

Releases

No releases published

Packages

No packages published

Languages

C++ 100.0%