Thunkv0.4byintret资源-CSDN文库

共17个文件

cpp：3个

h：2个

manifest：2个

Thunk

需积分: 9 181 浏览量 2011-03-13 16:31:41 上传评论收藏 65KB RAR 举报

资源推荐

资源详情

资源评论

收起资源包目录

Thunk v0.4 by intret.rar （17个子文件）

Thunk

Release

Thunk.exe 7KB

Thunk.sln 881B

Thunk

Thunk.vcproj 4KB

JWnd.h 1KB

Thunk.cpp 3KB

JWnd.cpp 2KB

main.cpp 106B

Debug

Thunk.exe.embed.manifest 663B

Thunk.exe.embed.manifest.res 728B

BuildLog.htm 5KB

Thunk.exe.intermediate.manifest 621B

mt.dep 60B

Thunk.h 2KB

clean.cmd 2KB

Thunk.suo 16KB

Thunk说明.docx 33KB

Debug

Thunk.exe 79KB

#include "Thunk.h" //Implementation of class Thunk Thunk::Thunk( void ) { } Thunk::~Thunk(void) { Destroy(); } LPVOID Thunk::Create(DWORD dwThis, DWORD methodPtr, CallConversion methodConv, CallConversion cbConv) { //DWORD dwMethodAddr = union_cast<DWORD, TMethodPtr>(methodPtr); PBYTE pThunkCode = NULL; SYSTEM_INFO si = {0}; GetSystemInfo(&si); // allocate one page memory and add EXECUTTION access right, // just for DEP(Data Execution Erevention,Win XP,2003,Vista,7) pThunkCode = (PBYTE)VirtualAlloc( NULL, si.dwPageSize, // at least one page size MEM_COMMIT, PAGE_EXECUTE_READWRITE ); if (NULL == pThunkCode) { return (LPVOID)0; } // 1. callback : __stdcall or __cdecl // class method : __stdcall // // ------machine code----- ------asm code----------------------- // FF 34 24 push dword ptr [esp] // C7 44 24 04 44 33 22 00 mov dword ptr [esp+4],223344h[this] // E9 33 22 11 00 jmp 0x00112233[method] // ----------------------- ------------------------------------- if ( StdCall == methodConv && (StdCall == cbConv || CDecl == cbConv ) ) { const SIZE_T MACHINE_CODE_SIZE = 16; DWORD dwJmpOffset = (DWORD)((DWORD)methodPtr - (DWORD)&pThunkCode[MACHINE_CODE_SIZE] ); *((DWORD*)(&pThunkCode[0 ])) = 0x002434FF; *((DWORD*)(&pThunkCode[3 ])) = 0x042444C7; *((DWORD*)(&pThunkCode[7 ])) = dwThis; *((BYTE *)(&pThunkCode[11])) = 0xE9; *((DWORD*)(&pThunkCode[12])) = dwJmpOffset; // Add to map container. m_mapThunkItem[ methodPtr] = (pThunkCode); } // 2. callback : __stdcall // class method : __thiscall // // ------machine code----- ------asm code----------------------- // B9 00 11 22 33 mov ecx,33221100h[this pointer] // E9 00 11 22 33 jmp 33221100h // ------machine code----- ------asm code----------------------- else if ( ThisCall == methodConv && StdCall == cbConv ) { const SIZE_T MACHINE_CODE_SIZE = 10; DWORD dwJmpOffset = (DWORD)((DWORD)methodPtr - (DWORD)&pThunkCode[MACHINE_CODE_SIZE] ); *((BYTE *)(&pThunkCode[0])) = 0xB9; *((DWORD*)(&pThunkCode[1])) = dwThis; *((BYTE *)(&pThunkCode[5])) = 0xE9; *((DWORD*)(&pThunkCode[6])) = dwJmpOffset; // Add to map container. m_mapThunkItem[ methodPtr] = (pThunkCode); } else { if (pThunkCode != NULL) { VirtualFree(pThunkCode, si.dwPageSize, MEM_RELEASE); } (pThunkCode) = NULL; } return (LPVOID)pThunkCode; } LPVOID Thunk::operator[]( DWORD methodPtr ) { return (m_mapThunkItem[methodPtr]); } void Thunk::Destroy() { SYSTEM_INFO si = {0}; GetSystemInfo(&si); std::map<DWORD, LPVOID>::const_iterator iter = m_mapThunkItem.begin(); for ( ; iter != m_mapThunkItem.end(); iter++) { if ( iter->second != NULL ) VirtualFree( iter->second, si.dwPageSize, MEM_RELEASE ); } }

评论收藏

内容反馈