Overview
Syllabus
Intro
Classic Code Injection Methods
PowerLoader - Abusing Shared Sections
Powerloader - ROP n' Roll
PowerLoader - Quick Summary
Ul Shared Memory - Reminder
PowerLoaderEx - Desktop Heap as Shared Section
PowerLoaderEx64 - What About 64-bit?
PowerLoaderEx64 - Strategy
PowerLoaderEx64 - User32 Calbacks To Rescue
Introduction - Kernel-To-User Code Injections
Common Injection Methods - User APC
Common Injection Methods - Entry Point Patching
Common Injection Methods -- Import Table Patching
Common Injection Methods - Quick Summary
Introducing Trap Frame injection
KTRAP_FRAME
The Trivial Injection
Codeless Code Injection - Challenges
Codeless Code Injection - NtClose as a callback
Codeless Code Injection - Creating dedicated thread
Codeless Code Injection - Creating a Dedicated Thread
Codeless Code Injection - API Example