Targeted Cyber Attacks by Sood Aditya Enbody Richard & Richard Enbody

Targeted Cyber Attacks by Sood Aditya Enbody Richard & Richard Enbody

Author:Sood, Aditya, Enbody, Richard & Richard Enbody
Language: eng
Format: epub
ISBN: 9780128006191
Publisher: Elsevier Science
Published: 2014-01-03T05:00:00+00:00


Inline hooking Inline hooking allows the attackers to overwrite the first few bytes of target function and place a jump instruction that redirects the execution flow to the attacker controlled function. As a result, malicious function is executed whenever the target function is loaded in the memory. After the hook code is executed, the control is transferred back to the target function to retain the normal execution flow.

DLL injections It is a process of injecting malicious DLLs in the virtual address space of the target program to execute arbitrary code in the system. It allows the attackers to alter the behavior of the process and associated components on the fly. DLL injection is implemented in following ways:• By specifying the DLL in the registry entry through AppInit_DLLs in HKLM hive.

• Using SetWindowsHookEx API

• Using CreateRemoteThread and WriteProcessMemory with VirtualAlloc APIs



Download



Copyright Disclaimer:
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.