Skip to content
/ Spoofed-Call Public

A wrapper class to hide the original calling address of a function

55 stars 14 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Darkratos/Spoofed-Call

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
README.md
README.md
 
 
spoofed_call.cpp
spoofed_call.cpp
 
 
spoofed_call.h
spoofed_call.h
 
 

Repository files navigation

Spoofed-Call

A wrapper class to hide the original calling address of a function

Usage Example

#include <Windows.h>
#include <iostream>

#include "spoofed_call.h"

#pragma section( ".text" )
__declspec( allocate( ".text" ) ) const unsigned char call_esi[ ] = { 0xFF, 0xD6 };

void __stdcall test( int a1, int a2, int a3 )
{
	std::cout << a1 + a2 + a3 << std::endl;
}

int main()
{
	spoofed_call* sc = new spoofed_call( spoof_method::existing, ( uintptr_t ) call_esi );
	sc->stdcall_fn( ( uintptr_t ) test, 3, 1, 2, 3 );
}

The code above should output '6'.

Observation

You will need to provide an address which contains an 'call esi'. The injection part is still not done.

About

A wrapper class to hide the original calling address of a function

Resources

Readme
Activity

Stars

55 stars

Watchers

6 watching

Forks

14 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages