hier mal ein etwas älterer Injector von mir.
Features:
- 2 different injection methods (CreateRemoteThread and SetThreadContext)
- module hiding via PEB manipulation
- auto save / load settings
- manual injection by process id
- auto injection by process name
- usermode (ring3) unhooking by loading a clean copy of ntdll.dll
Screenshots:
Have fun! Zacherl