DEP Bypass by VirtualProtect I re-visisted this topic and found the bypass is much easier than I have thought. A case where VirtualProtect is present Assuming we have a piece of x86-32bit code which calls VirtualProtect on a program with a…

On my previous post, I posted piece of code which ought to work out for a dll injection on the stage where kernel32.dll has not been mapped yet. It looked worked out apparently, in fact it missed a point. The point is kernel32.dll will be …

If you want to step back to the days before the high level languages had been prevailed, nevertheless still want to write somehow practical in a sense in this era, writing a piece of injection code is a good target. Windows supports functi…