Winonly -> create_remote_thread, inject_module, get_proc_address (undocumented inject_shellcode)

Hypnootika commented 7 months ago

Added and tested above functions. inject_module and get_proc_address are 100% working. create_remote_thread is destroying my brain at the moment. I THINK it is working correctly.

qb-0 commented 7 months ago

thank you

please use result.base = getModule(result, result.name).base for the base address of the process
remove the # Winonly comments in the cheatsheet - we didn't do that on other windows functions also
is processWrite necessary or / and could it be simplified?
is archMatch necessary? Could it be simplified with reusing is64bit?

Hypnootika commented 7 months ago

thank you

please use result.base = getModule(result, result.name).base for the base address of the process

remove the # Winonly comments in the cheatsheet - we didn't do that on other windows functions also

is processWrite necessary or / and could it be simplified?

is archMatch necessary? Could it be simplified with reusing is64bit?

As already explained in DC -> i needed to use enumModules because of the pyObject
Will do
No as explained in DC: Just for the Windows seperation
No as explained in DC: Just for the Windows seperation

Hypnootika commented 7 months ago

Fixed
Fixed
Fixed
Fixed

qb-0 / pyMeow

Winonly -> create_remote_thread, inject_module, get_proc_address (undocumented inject_shellcode) #44