search

第二章-执行与注入技术

0-创建线程注入(CreateThread Injection)chevron-right1-创建纤程注入(CreateFiber Injection)chevron-right2-创建远程线程注入(CreateRemoteThread Injection)chevron-right3-创建堆注入(HeapCreate Injection)chevron-right4-创建线程池注入(CreateThreadpoolWait Injection)chevron-right5-进程镂空注入(Process Hollowing Injection)chevron-right6-DLL镂空注入(DLL Hollowing Injection)chevron-right7-DLL劫持注入(涉及白加黑)chevron-right8-映射注入(Mapping Injection)chevron-right9-MapViewOfFile+NtMapViewOfSectionchevron-right10-挂钩注入(SetWindowsHookEx Injection)chevron-right11-注册表注入chevron-right12-设置上下文劫持注入(SetContext Hijack Injection)chevron-right13-剪贴板注入(Clipboard Injection)chevron-right14-突破session 0远程线程注入chevron-right15-枚举RWX区域注入chevron-right16-APC注入(APC Injection)chevron-right17-APC & NtTestAlert Injectionchevron-right18-APC劫持chevron-right19-Early Birdchevron-right20-基于资源节加载shellcodechevron-right21-内核回调表注入(KernelCallbackTable Injection)chevron-right22-自举的代码幽灵——反射DLL注入(Reflective DLL Injection)chevron-right23-内存申请总结chevron-right24-移动或复制shellcode总结chevron-right25-shellcode执行总结chevron-right
Previous7-保护Next0-创建线程注入(CreateThread Injection)