[prev in list] [next in list] [prev in thread] [next in thread] 

List:       bugtraq
Subject:    [Paper] Reflective Dll Injection
From:       stephen_fewer () harmonysecurity ! com
Date:       2008-10-31 17:54:15
Message-ID: 200810311754.m9VHsFmj005527 () www5 ! securityfocus ! com
[Download RAW message or body]

Hello, Just released a short paper on Reflective Dll Injection.

Abstract: Reflective DLL injection is a library injection technique in which the \
concept of reflective programming is employed to perform the loading of a library \
from memory into a host process. As such the library is responsible for loading \
itself by implementing a minimal Portable Executable (PE) loader.

You can download the paper here:
http://www.harmonysecurity.com/files/HS-P005_ReflectiveDllInjection.pdf

And the PoC code here:
http://www.harmonysecurity.com/files/ReflectiveDllInjection_v1.0.zip

Support for Reflective DLL Injection has been added to Metasploit in the form of a \
payload stage and a modified VNC DLL (both are currently in the development tree).

Cheers

Stephen Fewer


[prev in list] [next in list] [prev in thread] [next in thread]