Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

[Paper] Reflective Dll Injection

From: stephen_fewer () harmonysecurity com
Date: Fri, 31 Oct 2008 11:54:15 -0600
Hello, Just released a short paper on Reflective Dll Injection.

Abstract: Reflective DLL injection is a library injection technique in which the concept of reflective programming is 
employed to perform the loading of a library from memory into a host process. As such the library is responsible for 
loading itself by implementing a minimal Portable Executable (PE) loader.

You can download the paper here:
http://www.harmonysecurity.com/files/HS-P005_ReflectiveDllInjection.pdf

And the PoC code here:
http://www.harmonysecurity.com/files/ReflectiveDllInjection_v1.0.zip

Support for Reflective DLL Injection has been added to Metasploit in the form of a payload stage and a modified VNC DLL 
(both are currently in the development tree).

Cheers

Stephen Fewer
Previous By Date Next
Previous By Thread Next

Current thread: