C# Class GrayStorm.assemblyHelpers

ファイルを表示 Open project: GrayKernel/GrayStorm

Public Properties

Property Type Description
call_a_fun_ptr byte[]
call_a_fun_ptr_64 byte[]
call_a_fun_ptr_INT3 byte[]
call_a_fun_ptr_INT3_64 byte[]
holder byte[]

Public Methods

Method Description
DumpAFunction ( IntPtr target ) : byte[]
VirtualAlloc ( byte shellcodeIN ) : IntPtr
callATrueIntPtr ( IntPtr intPtrToFire, byte callingMethodIN ) : void
readFunction ( IntPtr assForeMan ) : byte[]
set64bit ( ) : void
writeDynamicShellcode ( IntPtr methodToOverWrite ) : void
writeFunction ( byte ShellCodeInGoodOut, IntPtr ptrTemp ) : void

Private Methods

Method Description
VirtualAlloc ( IntPtr lpAddress, UIntPtr dwSize, AllocationType flAllocationType, MemoryProtection flProtect ) : IntPtr
VirtualFree ( IntPtr lpAddress, UInt32 dwSize, UInt32 dwFreeType ) : bool
VirtualProtect ( IntPtr lpAddress, uint dwSize, uint flNewProtect, uint &lpflOldProtect ) : bool

Method Details

DumpAFunction() public static method

public static DumpAFunction ( IntPtr target ) : byte[]
target System.IntPtr
return byte[]

VirtualAlloc() public static method

public static VirtualAlloc ( byte shellcodeIN ) : IntPtr
shellcodeIN byte
return System.IntPtr

callATrueIntPtr() public static method

public static callATrueIntPtr ( IntPtr intPtrToFire, byte callingMethodIN ) : void
intPtrToFire System.IntPtr
callingMethodIN byte
return void

readFunction() public static method

public static readFunction ( IntPtr assForeMan ) : byte[]
assForeMan System.IntPtr
return byte[]

set64bit() public static method

public static set64bit ( ) : void
return void

writeDynamicShellcode() public static method

public static writeDynamicShellcode ( IntPtr methodToOverWrite ) : void
methodToOverWrite System.IntPtr
return void

writeFunction() public static method

public static writeFunction ( byte ShellCodeInGoodOut, IntPtr ptrTemp ) : void
ShellCodeInGoodOut byte
ptrTemp System.IntPtr
return void

Property Details

call_a_fun_ptr public_oe static_oe property

Takes an IntPtr as an argument and will call it.
public static byte[] call_a_fun_ptr
return byte[]

call_a_fun_ptr_64 public_oe static_oe property

public static byte[] call_a_fun_ptr_64
return byte[]

call_a_fun_ptr_INT3 public_oe static_oe property

public static byte[] call_a_fun_ptr_INT3
return byte[]

call_a_fun_ptr_INT3_64 public_oe static_oe property

public static byte[] call_a_fun_ptr_INT3_64
return byte[]

holder public_oe static_oe property

public static byte[] holder
return byte[]