-
Syscall call Function
04/18/2018 00:46
Cøre#1
04/19/2018 16:14
Omdi#2
[Only registered and activated users can see links. Click Here To Register...]
Allocate the assembly stub, change the syscall id and simply call it.
Allocate the assembly stub, change the syscall id and simply call it.
04/23/2018 00:20
Cøre#3
I‘ll call a function of antother process, example PlayerWalk. And i must call the function with syscall.
Example: PlayerWalk: 0x384829
Param: x y
Can you give me a example pls
Example: PlayerWalk: 0x384829
Param: x y
Can you give me a example pls
04/23/2018 01:48
warfley#4
You could inject a DLL which sets a signal handler to a function which executes the required calls. Then you just need to send the resprected signal to the target process and it will do your jobs
04/23/2018 10:37
Cøre#5
No dll
04/25/2018 22:40
cookie69#6
From what I know every process in windows NT is isolated and it is not possible to access the memory space of another process without using the win32 APIs that windows offers to you (served by the kernel).Quote:
No dll
That's why I can not imagine you can call a function inside a process without being in the same memory space (you need injection of a DLL or execute a Thread).
:confused:
04/26/2018 09:42
Dr. Coxxy#7
- create a code stub with virtualallocex
- copy the heavens gate in there if youre wow64
- copy the code @[Only registered and activated users can see links. Click Here To Register...] posted in there (from the syscall you need - note, the value of eax for the specific syscall will change between windows versions - you can find more or less complete lookup lists via google)
- copy an asm stub which can call the syscall/heavensgate with an arbitrary number of parameters (or just hardcode them)
- call the asm stub via e.g. createremotethread
- ???
- ...
oh and stop copypasting code you dont understand...