Skip to content

cnthigu/manual-getprocaddress

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
src
src
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
demo.png
demo.png
 
 
main.sln
main.sln
 
 

Repository files navigation

Custom GetModuleHandle / GetProcAddress Implementation

This project demonstrates how to resolve Windows API functions manually without using the WinAPI.

It works by:

  1. Accessing the PEB (Process Environment Block)
  2. Enumerating loaded modules via PEB_LDR_DATA
  3. Parsing the PE Export Directory
  4. Resolving function addresses manually

The results are compared against the real WinAPI implementation.

Demo

demo

NOTE: THIS IS FOR EDUCATIONAL PURPOSES ONLY.

About

Custom GetModuleHandle and GetProcAddress implementation without calling the Windows API

Topics

windows pebble winapi reverse-engineering pe-format getprocaddress windows-internals getmodulehandle

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages