DLL Injection Into All Processes - Part 11 - Coding Windows Driver: DLL Injection - ShellCode x64

Coding it in WinAPI/C++ using Visual Studio - Coding Windows Driver: DLL Injection - ShellCode x64 Blog post: https://dennisbabkin.com/blog/?i=AAA10800 0:00 Intro 1:22 Reasons for using APC to code DLL injection from our OnLoadImage kernel callback 8:05 Coding RundownRoutine_Proc() callback 11:59 Coding KernelRoutine_Proc() callback 14:50 Coding NormalRoutine_Proc() callback 19:21 Explanation of two types of code that we will put into our FAKE.DLL: Shell-code and DllMain 22:50 Adding dll_asm64.asm file with the base-independent x64 Assembly shell-code to the FAKE.DLL project 24:33 Coding UserModeNormalRoutine function shell-code in base-independent x64 Assembly: https://dennisbabkin.com/blog/?i=AAA00C00 29:57 Explanation why we can't use imports from external DLLs to call system functions in our base-independent shell-code 31:45 Coding getProcAddrForMod function to resolve exported function address from a module in base-independent x64 Assembly 1:01:49 Finishing to code UserModeNormalRoutine function in base-independent x64 Assembly #kernel #driver #tutorial #cpp #win32