Open

Hooking Engine at NTDLL to embed files and DLLs

This project is ending today and has an average bid price of $3010 USD.

Get free quotes for a project like this
Employer working
Skills Required
Project Budget
$1500 - $3000 USD
Total Bids
3
Project Description

Hello,

This project is similar to Enigma VirtualBox but without a GUI.

I require the following:

1) DLL that performs hooking on [url removed, login to view] to intercept file operations.

2) An application that embeds the above DLL in a target EXE/DLL and it will also embed specific files and/or DLLs. Example:

[url removed, login to view] [url removed, login to view] [url removed, login to view] [url removed, login to view] [url removed, login to view]

Description:

1) After executing the above command “[url removed, login to view] [url removed, login to view] [url removed, login to view] [url removed, login to view] [url removed, login to view]” it will create an output file which is basically the package of “[url removed, login to view] + Hooking DLL + [url removed, login to view] [url removed, login to view] [url removed, login to view]”

2) When we run now “[url removed, login to view]” in case that it access (read operations only) to “[url removed, login to view]” your hook will give access to the embedded file, like if it were present on disk.

3) In case that “[url removed, login to view]” makes a “LoadLibrary([url removed, login to view])” it will map and load the embedded DLL, like if it were present on disk

Notes:

1) The solution needs to be implemented with Visual Studio in C or C++ (native)

2) For the hooking engine, you need to use the “minhook” library. If you have a better hooking engine, let me know first.

3) For PE file access/modification, you have to use the PEBliss library

4) The solution will work on PE32 and PE64 files (32-bit and 64-bit EXE and DLLs)

5) The hooking level is at NTDLL.DLL. We don’t accept other hooking levels like [url removed, login to view], etc.

6) You might want to look at Enigma VirtualBox for the NTDLL APIs that are hooked.

Thanks!

A.

Looking to make some money?

  • Set your budget and the timeframe
  • Outline your proposal
  • Get paid for your work

Hire Freelancers who also bid on this project

    • Forbes
    • The New York Times
    • Time
    • Wall Street Journal
    • Times Online