|
hi,
as redbull said, bypass firewalls is very easy injecting code in browser process...
so, below is my code for doing such, in c
it create the default browser as a suspended process, overwrite entrypoint with a code to load all dlls our process will need (and that can be different from the ones the browser load), and then signal that we can continue, overwriting the whole browser memory image with out one
so, with this routine, we dont need delta or similars hacks... any program (with a smaller memory image than browser) can run with browser inet permissions
vecna
ps: different of what MaRKuS-DJM said, i guess that some firewalls hook CreateRemoteThread(), and no memory writes... i still dont found problems with the code below
|