Skip to content

proxytype/Explorer-Process-Execution

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
Loader
Loader
 
 
Payload
Payload
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Explorer-Process-Execution

Inject dll to explorer.exe to prevent file execution.

Requierments:

Microsoft Detours Library - https://github.com/microsoft/Detours

Compile:

  1. Unzip source code, open command line and enter to source directory
  2. SET DETOURS_TARGET_PROCESSOR=X64
  3. C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\VC\Auxiliary\Build\vcvars64.bat
  4. NMAKE

Add detours.lib to Linker additional libraries.

Hooked Functions:

  • NtCreateUserProcess

About

Inject dll to explorer.exe to prevent file execution.

Topics

windows vulnerability vulnerability-analysis vulnerability-research

Resources

Readme

License

GPL-3.0 license
Activity

Stars

2 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages