Bounda Posted June 16, 2006 Share Posted June 16, 2006 it seems to detect other windows, like firefox and notepad, but it wont detect diablo. CS:S Aimbot - List From INI Funcs Link to comment Share on other sites More sharing options...
Drkgodz Posted January 19, 2007 Share Posted January 19, 2007 Yeah, I tried injecting the script, but it won't work. It says _InjectDll is not a functuion or something like that. I tried the newest beta version too, but to no avail. Can y'all tell me which version y'all use? Thanks. Link to comment Share on other sites More sharing options...
Psibernetic Posted January 19, 2007 Share Posted January 19, 2007 (edited) I play a game called Eudemons Online... as mentioned before the idea of changing songs without alt-tabbing would be a good starting point for me... and idea how to implement this?...I undestand the injection...now how would I call my functions from the game? Edited January 19, 2007 by Psibernetic [sup]Psibernetic[/sup]My Creations:X-HideSecuracy Link to comment Share on other sites More sharing options...
locomaestro Posted January 21, 2007 Share Posted January 21, 2007 Now THAT is an example!-mudude this is awesome , i was trying to find a way on how to do it in autoit since i only do it in c# but dude you can definetely make a good rootkit for autoit with this udf. thanks dude this is awesome i ll try to see if i can make another rootkit but this time in autoit Link to comment Share on other sites More sharing options...
onedayillpay Posted March 1, 2007 Share Posted March 1, 2007 can some one show me a short and simmple example Link to comment Share on other sites More sharing options...
lolp1 Posted March 6, 2007 Share Posted March 6, 2007 Says it injects the DLL into diablo, but it doesn't, or does it wrong. Link to comment Share on other sites More sharing options...
onedayillpay Posted March 6, 2007 Share Posted March 6, 2007 with this tool i can view a list of dll's that are actave under a process like firefox. Procexp.exe www.sysinternals.com Firefox has called about 50 to 60 dll's... maybe can some one give me a example using Firefox and _injecting a dll like um maybe kernel32.dll i dont play diablo Link to comment Share on other sites More sharing options...
ptrex Posted March 7, 2007 Share Posted March 7, 2007 @onedayillpayProcexp.exe www.sysinternals.comYou can do this without any external tool !!Run this in the cmd :taskList.exe /FI "IMAGENAME eq outlook.exe" /MEnjoy !!ptrex Contributions :Firewall Log Analyzer for XP - Creating COM objects without a need of DLL's - UPnP support in AU3Crystal Reports Viewer - PDFCreator in AutoIT - Duplicate File FinderSQLite3 Database functionality - USB Monitoring - Reading Excel using SQLRun Au3 as a Windows Service - File Monitor - Embedded Flash PlayerDynamic Functions - Control Panel Applets - Digital Signing Code - Excel Grid In AutoIT - Constants for Special Folders in WindowsRead data from Any Windows Edit Control - SOAP and Web Services in AutoIT - Barcode Printing Using PS - AU3 on LightTD WebserverMS LogParser SQL Engine in AutoIT - ImageMagick Image Processing - Converter @ Dec - Hex - Bin -Email Address Encoder - MSI Editor - SNMP - MIB ProtocolFinancial Functions UDF - Set ACL Permissions - Syntax HighLighter for AU3ADOR.RecordSet approach - Real OCR - HTTP Disk - PDF Reader Personal Worldclock - MS Indexing Engine - Printing ControlsGuiListView - Navigation (break the 4000 Limit barrier) - Registration Free COM DLL Distribution - Update - WinRM SMART Analysis - COM Object Browser - Excel PivotTable Object - VLC Media Player - Windows LogOnOff Gui -Extract Data from Outlook to Word & Excel - Analyze Event ID 4226 - DotNet Compiler Wrapper - Powershell_COM - New Link to comment Share on other sites More sharing options...
Moderators SmOke_N Posted March 7, 2007 Moderators Share Posted March 7, 2007 (edited) @onedayillpay You can do this without any external tool !! Run this in the cmd : Enjoy !! ptrexptrex, what OS's is this good on? Edit: Everything I read on it said XP... but whatever... fun times: #include <array.au3> $avArray = _ProcessGetExtended('outlook.exe') _ArraySort($avArray, 0, 1) _ArrayDisplay($avArray, 'DLLs') Func _ProcessGetExtended($sExe, $bType = -1);-1 or Default for Dll's and 1 or True for Services attatched If ProcessExists($sExe) = 0 Then Return SetError(1, 0, 0) If Not FileExists(@SystemDir & '\tasklist.exe') Then Return SetError(2, 0, 0) Local $iPID, $sHoldData, $aArray If $bType = -1 Or $bType = Default Then $iPID = Run(@ComSpec & ' /c taskList.exe /FI "IMAGENAME eq ' & $sExe & '" /M', @SystemDir, @SW_HIDE, 2) Else $iPID = Run(@ComSpec & ' /c taskList.exe /FI "IMAGENAME eq ' & $sExe & '" /SVC', @SystemDir, @SW_HIDE, 2) EndIf While Not @error $sHoldData &= StdoutRead($iPID) WEnd If Not $sHoldData Then Return SetError(3, 0, 0) $aArray = StringRegExp($sHoldData, '(?s)(?i)=\s*.*?\d+\s+(.*?)$', 1) If IsArray($aArray) = 0 Then Return SetError(4, 0, 0) If StringInStr($aArray[0], ',') Then Return StringSplit(StringStripWS($aArray[0], 8), ',') If StringInStr($aArray[0], 'n/a') Then Return SetError(5, 0, 0) Local $aBackUp[2] = [1, $aArray[0]] Return $aBackUp EndFunc Edit2: Had ArraySort() sorting 0 base oops.... Edit3: Had to fix the array returned in case there was only 1 item found. Edited March 7, 2007 by SmOke_N Common sense plays a role in the basics of understanding AutoIt... If you're lacking in that, do us all a favor, and step away from the computer. Link to comment Share on other sites More sharing options...
ptrex Posted March 7, 2007 Share Posted March 7, 2007 (edited) @SmOke_N Indead only XP and above. But the beautifull part of it is, is that you can run it against a remote machine as well !! Anywas I wanted eve to make it available in a UDF, but since you did I don't need to any more !! Maybe you can extend your UDF with the following switches : /S remote machine /U user /P password /SVC service This makes it than complete !! Nice job. regards, ptrex Edited March 7, 2007 by ptrex Contributions :Firewall Log Analyzer for XP - Creating COM objects without a need of DLL's - UPnP support in AU3Crystal Reports Viewer - PDFCreator in AutoIT - Duplicate File FinderSQLite3 Database functionality - USB Monitoring - Reading Excel using SQLRun Au3 as a Windows Service - File Monitor - Embedded Flash PlayerDynamic Functions - Control Panel Applets - Digital Signing Code - Excel Grid In AutoIT - Constants for Special Folders in WindowsRead data from Any Windows Edit Control - SOAP and Web Services in AutoIT - Barcode Printing Using PS - AU3 on LightTD WebserverMS LogParser SQL Engine in AutoIT - ImageMagick Image Processing - Converter @ Dec - Hex - Bin -Email Address Encoder - MSI Editor - SNMP - MIB ProtocolFinancial Functions UDF - Set ACL Permissions - Syntax HighLighter for AU3ADOR.RecordSet approach - Real OCR - HTTP Disk - PDF Reader Personal Worldclock - MS Indexing Engine - Printing ControlsGuiListView - Navigation (break the 4000 Limit barrier) - Registration Free COM DLL Distribution - Update - WinRM SMART Analysis - COM Object Browser - Excel PivotTable Object - VLC Media Player - Windows LogOnOff Gui -Extract Data from Outlook to Word & Excel - Analyze Event ID 4226 - DotNet Compiler Wrapper - Powershell_COM - New Link to comment Share on other sites More sharing options...
Moderators SmOke_N Posted March 7, 2007 Moderators Share Posted March 7, 2007 @SmOke_NIndead only XP and above. But the beautifull part of it is, is that you can run it against a remote machine as well !!Anywas I wanted eve to make it available in a UDF, but since you did I don't need to any more !!Maybe you can extend your UDF with the following switches :/S remote machine/U user/P password/SVC serviceThis makes it than complete !!Nice job.regards,ptrexI used this: http://www.wilderssecurity.com/showthread.php?t=40123 as a reference... Yeah, I tested it on w2k pro and a no go lol... I have to edit again, if only 1 item is found (more than likely services) it will return 0. Common sense plays a role in the basics of understanding AutoIt... If you're lacking in that, do us all a favor, and step away from the computer. Link to comment Share on other sites More sharing options...
ptrex Posted March 7, 2007 Share Posted March 7, 2007 @SmOke_N If you edit / add the missing stuff and release a new version of your handy UDF it would please a lot of people. Best to release it in a new POST because it doesn't belong here I think. Anyway thanks for share so far. regards, ptrex Contributions :Firewall Log Analyzer for XP - Creating COM objects without a need of DLL's - UPnP support in AU3Crystal Reports Viewer - PDFCreator in AutoIT - Duplicate File FinderSQLite3 Database functionality - USB Monitoring - Reading Excel using SQLRun Au3 as a Windows Service - File Monitor - Embedded Flash PlayerDynamic Functions - Control Panel Applets - Digital Signing Code - Excel Grid In AutoIT - Constants for Special Folders in WindowsRead data from Any Windows Edit Control - SOAP and Web Services in AutoIT - Barcode Printing Using PS - AU3 on LightTD WebserverMS LogParser SQL Engine in AutoIT - ImageMagick Image Processing - Converter @ Dec - Hex - Bin -Email Address Encoder - MSI Editor - SNMP - MIB ProtocolFinancial Functions UDF - Set ACL Permissions - Syntax HighLighter for AU3ADOR.RecordSet approach - Real OCR - HTTP Disk - PDF Reader Personal Worldclock - MS Indexing Engine - Printing ControlsGuiListView - Navigation (break the 4000 Limit barrier) - Registration Free COM DLL Distribution - Update - WinRM SMART Analysis - COM Object Browser - Excel PivotTable Object - VLC Media Player - Windows LogOnOff Gui -Extract Data from Outlook to Word & Excel - Analyze Event ID 4226 - DotNet Compiler Wrapper - Powershell_COM - New Link to comment Share on other sites More sharing options...
A. Percy Posted March 9, 2007 Share Posted March 9, 2007 Yeah, I thought about that a little later than I should've. When I get up tomorrow I'll add a function that returns a PID from a hWnd and then clip off the top part of the Inject function so that it takes a PID; that way, people can do it any way they want. This worked for me: expandcollapse popup#include-once Func _InjectDllByHwnd($hWnd, $dllpath) ;make sure the user passed valid parameters If $hWnd <= 0 Then SetError(-1) Return False ElseIf StringLen($dllpath) <= 4 Or StringRight($dllpath, 4) <> ".dll" Then SetError(-2) Return False EndIf Local $pid, $pHandle, $pLibRemote, $modHandle, $LoadLibraryA, $hThread ;get the pid from the window provided $pid = DllCall("user32.dll", "int", "GetWindowThreadProcessId", "hwnd", $hWnd, "int_ptr", 0) If IsArray($pid) Then $pid = $pid[2] _InjectDllByPid($pid, $dllpath) Else SetError(-3) Return False EndIf EndFunc Func _InjectDllByPid($pid, $dllpath) ;make sure the user passed valid parameters If $pid = 0 Then SetError(-1) Return False ElseIf StringLen($dllpath) <= 4 Or StringRight($dllpath, 4) <> ".dll" Then SetError(-2) Return False EndIf Local $pHandle, $pLibRemote, $modHandle, $LoadLibraryA, $hThread ;open dll that we'll be using Local $kernel32 = DllOpen("kernel32.dll") ;open the process for writing $pHandle = DllCall($kernel32, "int", "OpenProcess", "int", 0x1F0FFF, "int", 0, "int", $pid) If IsArray($pHandle) And $pHandle[0] > 0 Then $pHandle = $pHandle[0] Else SetError(-4) Return False EndIf $pLibRemote = DllCall($kernel32, "int", "VirtualAllocEx", "int", $pHandle, "short", 0, "int", 0x1000, "int", 0x1000, "int", 4) If IsArray($pLibRemote) Then If $pLibRemote[0] > 0 Then ;debug ConsoleWrite("0x" & Hex($pLibRemote[0], 8) & @CR) $pLibRemote = $pLibRemote[0] Else SetError(-5) Return False EndIf Else SetError(-6) Return False EndIf For $i = 0 To StringLen($dllpath) $ret = DllCall("kernel32.dll", "int", "WriteProcessMemory", "int", $pHandle, "int", $pLibRemote + $i, "int_ptr", Asc(StringMid($dllpath, $i + 1, 1)), "int", 1, "int", 0) If IsArray($ret) Then If $ret[0] = 0 Then SetError(-7) Return False EndIf Else SetError(-8) Return False EndIf Next $modHandle = DllCall($kernel32, "long", "GetModuleHandle", "str", "kernel32.dll") If IsArray($modHandle) Then If $modHandle[0] > 0 Then $modHandle = $modHandle[0] Else SetError(-9) Return False EndIf Else SetError(-10) Return False EndIf $LoadLibraryA = DllCall($kernel32, "long", "GetProcAddress", "long", $modHandle, "str", "LoadLibraryA") If IsArray($LoadLibraryA) Then If $LoadLibraryA[0] > 0 Then $LoadLibraryA = $LoadLibraryA[0] Else SetError(-11) Return False EndIf Else SetError (-12) Return False EndIf $hThread = DllCall($kernel32, "int", "CreateRemoteThread", "int", $pHandle, "int", 0, "int", 0, "long", $LoadLibraryA, "long", $pLibRemote, "int", 0, "int", 0) If IsArray($hThread) Then ConsoleWrite($hThread[0] & @CR) If $hThread[0] > 0 Then $hThread = $hThread[0] Else SetError(-13) Return False EndIf Else SetError(-14) Return False EndIf DllCall($kernel32, "int", "VirtualFreeEx", "int", $pHandle, "int", $pLibRemote, "int", 0x1000, "int", 0x8000) DllCall($kernel32, "int", "CloseHandle", "int", $hThread) DllCall($kernel32, "int", "CloseHandle", "int", $pHandle) DllClose($kernel32) Return True EndFunc oÝ÷ ØLZ^jëh×6 #include "_InjectDll.au3" $ret = _InjectDllByPid(ProcessExists( "Calculator.exe" ), "c:\mytest.dll") $err = @error If $err < 0 Then MsgBox(16, $ret, $err) Else MsgBox(64, $ret, "YUP!") EndIf Só o que posso lhe dizer, bom é quando faz mal!My work:Au3Irrlicht - Irrlicht for AutoItMsAgentLib - An UDF for MSAgentAu3GlPlugin T2 - A 3D plugin for AutoIt...OpenGl Plugin - The old version of Au3GlPlugin.MAC Address Changer - Changes the MAC AddressItCopter - A dragonfly R/C helicopter simulator VW Bug user Pinheiral (Pinewood) city: http://pt.wikipedia.org/wiki/Pinheiral Link to comment Share on other sites More sharing options...
malu05 Posted March 10, 2007 Share Posted March 10, 2007 I play a game called Eudemons Online... as mentioned before the idea of changing songs without alt-tabbing would be a good starting point for me... and idea how to implement this?...I undestand the injection...now how would I call my functions from the game?Hmm.. i really wonder about that too..I know that "DllCall" is used for the call but that isnt application specified.Or is it supposed to be called from within the target application and therefor needed to inject some code too?Like finding the memory location for a exact KeyInput shortcut from the application and then inject the code to go through the dll or? [center][u]WoW Machinima Tool[/u] (Tool for Machinima Artists) [/center] Link to comment Share on other sites More sharing options...
onedayillpay Posted March 11, 2007 Share Posted March 11, 2007 #include "_InjectDll.au3" $ret = _InjectDllByPid(ProcessExists( "Calculator.exe" ), "c:\mytest.dll") $err = @error If $err < 0 Then MsgBox(16, $ret, $err) Else MsgBox(64, $ret, "YUP!") EndIf can some one show me were i can get some tools to write .Dll's and some source code for this test.dll' with some functions explained threw out the code... Link to comment Share on other sites More sharing options...
Moderators SmOke_N Posted March 11, 2007 Moderators Share Posted March 11, 2007 #include "_InjectDll.au3" $ret = _InjectDllByPid(ProcessExists( "Calculator.exe" ), "c:\mytest.dll") $err = @error If $err < 0 Then MsgBox(16, $ret, $err) Else MsgBox(64, $ret, "YUP!") EndIf can some one show me were i can get some tools to write .Dll's and some source code for this test.dll' with some functions explained threw out the code...Take your pick at any lower level language... Google it. Common sense plays a role in the basics of understanding AutoIt... If you're lacking in that, do us all a favor, and step away from the computer. Link to comment Share on other sites More sharing options...
tip Posted October 24, 2008 Share Posted October 24, 2008 Hi, Is this method can be used to make an autoit exe file with 7zip-32.dll in it which can be "dllcall"ed? Regards [center]MsgBox_Tipped: Eye candy msgboxes/inputboxes/loginboxes. | CreateBlankBox: Semi-transparent layers with borders and rounded corners.[/center] Link to comment Share on other sites More sharing options...
JRowe Posted October 25, 2008 Share Posted October 25, 2008 No, for that you'll need this thread : http://www.autoitscript.com/forum/index.php?showtopic=51103 [center]However, like ninjas, cyber warriors operate in silence.AutoIt Chat Engine (+Chatbot) , Link Grammar for AutoIt , Simple Speech RecognitionArtificial Neural Networks UDF , Bayesian Networks UDF , Pattern Matching UDFTransparent PNG GUI Elements , Au3Irrlicht 2Advanced Mouse Events MonitorGrammar Database GeneratorTransitions & Tweening UDFPoker Hand Evaluator[/center] Link to comment Share on other sites More sharing options...
tip Posted October 25, 2008 Share Posted October 25, 2008 (edited) Thanks but creator of that topic (Zedna) directed me here ... Any ideas how can I read dlls directly from resources... Edited October 25, 2008 by tip [center]MsgBox_Tipped: Eye candy msgboxes/inputboxes/loginboxes. | CreateBlankBox: Semi-transparent layers with borders and rounded corners.[/center] Link to comment Share on other sites More sharing options...
Skrip Posted October 25, 2008 Share Posted October 25, 2008 Can we get an example of a dll that would work? [left][sub]We're trapped in the belly of this horrible machine.[/sub][sup]And the machine is bleeding to death...[/sup][sup][/sup][/left] Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now