111

2022-03-07 13:50:29 +08:00
parent bd510c2bac
commit 0b2e30605a
5 changed files with 175 additions and 0 deletions
--- a/test/dllmain.cpp
+++ b/test/dllmain.cpp
@@ -144,10 +144,89 @@ void LenheartThread(void)



+#include "inlinehook.h"

+inlinehook* TEA = nullptr;
+inlinehook* TEB = nullptr;
+
+
+void JMPre(int address)
+{
+    _asm
+    {
+        pop ebp
+        add esp, 0x00000004
+        ret
+    }
+}
+
+void qubb(int a1,int a2,int a3)
+{
+    _asm
+    {
+        push esi
+        push edi
+        pushfd
+        cld
+        mov ecx, dword ptr[ebp + 0x10]
+        mov esi, dword ptr[ebp + 0x0c]
+        mov edi, dword ptr[ebp + 0x08]
+        rep movsb
+        popfd
+        pop edi
+        pop esi
+    }
+}
+
+void datec()
+{
+    int ptrd;
+    int packtype;
+    int packlen;
+
+    ptrd = 0;
+    _asm 
+    {
+        mov dword ptr[ebp - 0x04], ebx
+    }
+    //packtype = *(int*)(ptrd + 1);
+    qubb(packtype,ptrd + 1, 2);
+    qubb(packlen,ptrd + 3, 2);
+    //packlen = *(int*)(ptrd + 3);
+
+}
+
+
+void hookadd()
+{
+    _asm
+    {
+        pushad
+        pushfd
+    }
+
+    datec();
+
+    _asm
+    {
+        popfd
+        popad
+    }
+
+    _asm
+    {
+        mov ecx, dword ptr[ebp - 0x0000012c]
+    }
+
+    JMPre(7333970);
+}

 DWORD WINAPI MyThreadProc2(LPVOID pParam)
 {
+    std::cout << u8"开始HOOK" << std::endl;
+    TEA = new inlinehook(0x6FE84C, (int)hookadd);
+    //修改地址
+    TEA->Motify_address();


    return 0;