azagarampur / byeintegrity-lite Goto Github PK
View Code? Open in Web Editor NEWBypass UAC by abusing shell protocol handlers
byeintegrity-lite's People
Contributors
Stargazers
Watchers
byeintegrity-lite's Issues
N/A
N/A
N/A
N/A
How can I merge my new dynamic signature locater with this?
I made a dynamic function location finder which does away with the need for signatures like in like line 78 of the c++ file (first use of UserAssocSetInternal). This returns the same memory address as your way does but I do not know how to implement my new function into your project, how would you recommend i do it?
My code:
#include <windows.h>
#include <stdio.h>
#include <dbghelp.h>
#include <iostream>
#pragma comment(lib , "dbghelp.lib")
HMODULE dllLocation;
int funcLocation;
int finalLocation;
HANDLE hProcess;
BOOL CALLBACK EnumSymProc(PSYMBOL_INFO pSymInfo, ULONG, PVOID UserContext) {
size_t maxcmplen = strlen((PCHAR)UserContext);
if (maxcmplen == pSymInfo->NameLen) {
if ((strncmp(pSymInfo->Name, (PCHAR)UserContext, pSymInfo->NameLen)) == 0) {
funcLocation = pSymInfo->Address;
}
}
return TRUE;
}
void main(int argc, char* argv[]) {
char pdbFileName[] = "SystemSettings.Handlers.pdb";
char functionName[] = "SetUserAssoc";
LoadLibraryExW(L"SystemSettings.Handlers.dll", nullptr, LOAD_LIBRARY_SEARCH_SYSTEM32);
dllLocation = GetModuleHandle(L"SystemSettings.Handlers.dll");
hProcess = GetCurrentProcess();
SymInitialize(hProcess, NULL, FALSE);
DWORD64 BaseOfDll = SymLoadModuleEx(hProcess, NULL, pdbFileName, NULL,
0x400000, 0x20000, NULL, 0);
SymEnumSymbols(hProcess, BaseOfDll, "*!*", EnumSymProc, functionName);
SymCleanup(hProcess);
std::wcout << std::hex << reinterpret_cast<uintptr_t>(dllLocation) + funcLocation << std::endl;
}
Example (Yours on top, mine below):
Also the pdb file needed for this (SystemSettings.Handlers.pdb) can be downloaded via https://github.com/rajkumar-rangaraj/PDB-Downloader/releases/download/v1.0/PDBDownloader.exe and loading SystemSettings.Handlers.dll as the input file
N/A
N/A
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.