Skip to content
/ window_hijack Public
forked from thesecretclub/window_hijack

Rendering on external windows via hijacking thread contexts, with notes on ValidateHwnd

secret.club
7 stars 98 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

lennyRBLX/window_hijack

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
window_hijack
window_hijack
 
 
window_hijack_cli
window_hijack_cli
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
window_hijack.sln
window_hijack.sln
 
 

Repository files navigation

Window Hijack

Rendering on external windows via hijacking thread contexts. You can read a full write-up at: https://secret.club/2020/05/12/abusing-compositions.html

Changes

Added notes to what is necessary for this to work inside of a manually mapped driver, and describes why it only works in the IOCTL handler. The notes can be located in window_hijack\includes\dispatch\control.cpp.

Gist including all necessary code to wrap and run ValidateHwnd: https://gist.github.com/juniorjacob/7db2b91847eca8cc870c75c224fe9e0b.

Usage

To use the project as-is:

  1. Enable test-signing mode
  2. Compile in Release x64
  3. Load the driver using any traditional driver loader
  4. Start window_hijack_cli using the following pattern: window_hijack_cli.exe [window_class_name]

Credits

paracord (yousif), IChooseYou

About

Rendering on external windows via hijacking thread contexts, with notes on ValidateHwnd

secret.club

Resources

Readme
Activity

Stars

7 stars

Watchers

0 watching

Forks

7 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • C++ 100.0%