Академический Документы
Профессиональный Документы
Культура Документы
Process selection:
Existing - select existing process from the list
New - new process will be launched before injection
Manual launch - after pressing 'Inject' button, injector will wait for target
process startup
Images:
List of images you want inject
Add - add new image to the list. Drag'n'drop is also supported
Remove - remove selected image
Clear - clear image list
Advanced options:
Injection type:
Native inject - common approach using LoadLibraryW \ LdrLoadDll in newly
created or existing thread
Manual map - manual copying image data into target process memory without
creating section object
Kernel(New thread) - kernel mode ZwCreateThreadEx into LdrLoadDll. Uses
driver
Kernel(APC) - kernel mode APC into LdrLoadDll. Uses driver
Kernel(Manual map) - kernel manual mapping. Uses driver
Command Line:
Process command line arguments
Init routine:
If you are injecting native (not pure IL) image, this is name of exported
function that will be called after injection is done. This export is called as void
( __stdcall* )(wchar_t*) function.
If you are injecting pure managed image, this is name of public method that
will be executed using ICLRRuntimeHost::ExecuteInDefaultAppDomain.
Init argument:
String that is passed into init routine
Inject delay:
Delay before injection start
Inject interval:
Delay between each image
Menu options: