aljaz/shadow-rs
1
1
Fork 0
mirror of https://github.com/joaoviictorti/shadow-rs.git synced 2026-01-14 04:54:29 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
45c99158b4c6772ecba7a1f54c41ea4876b005b4
shadow-rs/client/src/modules/injection.rs
joaoviictorti 45c99158b4 docs: Adding documentation for the client
2024-11-01 15:21:19 -03:00

130 lines
4.3 KiB
Rust
Raw Blame History

use {
log::{info, error, debug},
std::{ptr::null_mut, ffi::c_void},
common::structs::TargetInjection,
crate::{utils::check_file, utils::open_driver},
windows_sys::Win32::{
Foundation::{CloseHandle, HANDLE},
System::IO::DeviceIoControl
},
};
/// Provides operations for injecting code into processes through a driver interface.
pub struct Injection {
driver_handle: HANDLE,
}
impl Injection {
/// Creates a new `Injection` instance, opening a handle to the driver.
///
/// # Returns
///
/// * An instance of `Injection`.
///
/// # Panics
///
/// Panics if the driver cannot be opened.
pub fn new() -> Self {
let driver_handle = open_driver().expect("Error");
Injection { driver_handle }
}
/// Injects code into a process's thread specified by `pid` using a file at `path`.
///
/// # Arguments
///
/// * `ioctl_code` - The IOCTL code for the thread injection operation.
/// * `pid` - A reference to the PID of the target process.
/// * `path` - The file path of the code to inject.
pub fn injection_thread(self, ioctl_code: u32, pid: &u32, path: &String) {
info!("Starting process injection for PID: {pid}, using file: {path}");
info!("Checking if the file exists at the specified path");
if !check_file(path) {
error!("File not found at the specified path: {path}. Please check the file path and try again");
return;
}
info!("File found!!!");
debug!("Preparing injection structure");
let mut info_injection = TargetInjection {
path: path.to_string(),
pid: *pid as usize,
};
debug!("Sending DeviceIoControl command to Process Injection");
let mut return_buffer = 0;
let status = unsafe {
DeviceIoControl(
self.driver_handle,
ioctl_code,
&mut info_injection as *mut _ as *mut c_void,
size_of::<TargetInjection>() as u32,
null_mut(),
0,
&mut return_buffer,
null_mut(),
)
};
if status == 0 {
error!("DeviceIoControl Failed with status: 0x{:08X}", status);
} else {
info!("Process injection was successfully performed on PID: {pid} using the file at path: {path}");
}
}
/// Injects code into a process using an Asynchronous Procedure Call (APC) specified by `pid` and `path`.
///
/// # Arguments
///
/// * `ioctl_code` - The IOCTL code for the APC injection operation.
/// * `pid` - A reference to the PID of the target process.
/// * `path` - The file path of the code to inject.
pub fn injection_apc(self, ioctl_code: u32, pid: &u32, path: &String) {
debug!("Starting APC injection for PID: {pid}, using file: {path}");
info!("Checking if the file exists at the specified path");
if !check_file(path) {
error!("File not found at the specified path: {path}. Please check the file path and try again");
return;
}
info!("File found!!!");
debug!("Preparing injection structure");
let mut info_injection = TargetInjection {
path: path.to_string(),
pid: *pid as usize,
};
debug!("Sending DeviceIoControl command to APC Injection");
let mut return_buffer = 0;
let status = unsafe {
DeviceIoControl(
self.driver_handle,
ioctl_code,
&mut info_injection as *mut _ as *mut c_void,
size_of::<TargetInjection>() as u32,
null_mut(),
0,
&mut return_buffer,
null_mut(),
)
};
if status == 0 {
error!("DeviceIoControl Failed with status: 0x{:08X}", status);
} else {
info!("APC Injection successfully performed on PID: {pid}");
}
}
}
impl Drop for Injection {
/// Ensures the driver handle is closed when `Injection` goes out of scope.
fn drop(&mut self) {
debug!("Closing the driver handle");
unsafe { CloseHandle(self.driver_handle) };
}
}
Reference in New Issue View Git Blame Copy Permalink