├── README.md
├── .gitignore
├── .gitattributes
├── Injection.dpr
└── Injection.dproj


/README.md:
--------------------------------------------------------------------------------
1 | # One Time API Redirection Library
2 | This DLL library redirects a specified API for a one time execution of code upon injection into a process.
3 | 
4 | It currently only supports x86 arcitecture.
5 | 
6 | 


--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
 1 | # Windows thumbnail cache files
 2 | Thumbs.db
 3 | ehthumbs.db
 4 | ehthumbs_vista.db
 5 | 
 6 | # Folder config file
 7 | Desktop.ini
 8 | 
 9 | # Recycle Bin used on file shares
10 | $RECYCLE.BIN/
11 | 
12 | # Windows Installer files
13 | *.cab
14 | *.msi
15 | *.msm
16 | *.msp
17 | 
18 | # Windows shortcuts
19 | *.lnk
20 | 
21 | # =========================
22 | # Operating System Files
23 | # =========================
24 | 


--------------------------------------------------------------------------------
/.gitattributes:
--------------------------------------------------------------------------------
 1 | # Auto detect text files and perform LF normalization
 2 | * text=auto
 3 | 
 4 | # Custom for Visual Studio
 5 | *.cs     diff=csharp
 6 | 
 7 | # Standard to msysgit
 8 | *.doc	 diff=astextplain
 9 | *.DOC	 diff=astextplain
10 | *.docx diff=astextplain
11 | *.DOCX diff=astextplain
12 | *.dot  diff=astextplain
13 | *.DOT  diff=astextplain
14 | *.pdf  diff=astextplain
15 | *.PDF	 diff=astextplain
16 | *.rtf	 diff=astextplain
17 | *.RTF	 diff=astextplain
18 | 


--------------------------------------------------------------------------------
/Injection.dpr:
--------------------------------------------------------------------------------
  1 | library Injection;
  2 | 
  3 | //One Time API Redirection Library
  4 | //Copyright © 2020 Chester Fritz
  5 | //GNU Public License.
  6 | 
  7 | //This DLL library is designed to redirect a specified API for a one time execution of code upon injection into a process.
  8 | //Set RedirAPI to the name of the API you wish to redirect. This is case sensitive.
  9 | //Set DLLOFAPI to the name of the DLL you which to redirect including the .dll extension. 
 10 | //It should look like this:
 11 | //CONST RedirAPI:AnsiString='CreateWindowExA';
 12 | //CONST DLLOFAPI:WideString='user32.dll';
 13 | //Add your code to execute to the "DoYourStuff" Procedure. I've added a simple PatchMemoryByte function for your convenience.  
 14 | 
 15 | uses
 16 | Windows;
 17 | CONST UnloadDLL:Boolean= FALSE;//if true, this will unload this dll after executing your code. DO NOT USE WITH REGISTER BASED or FASTCALL CALLING CONVENTIONS;
 18 | CONST RedirAPI:AnsiString='YOURAPIHERE'; //api to be redirected//////////////////////////////////////////////////////////////////////////////////////////////
 19 | CONST DLLOFAPI:WideString='YOURDLLHERE.DLL'; //dll containing that api///////////////////////////////////////////////////////////////////////////////////////
 20 | CONST LOCALDLLNAME:WideString='Injection.dll';
 21 | var
 22 | RedirectedAPIAddr:Cardinal; //Address of the RedirectedAPI
 23 | FreeLibAddr:Cardinal; //Address of FreeLibrary
 24 | mimgbase:Cardinal;    //Image Base of Main Executable
 25 | localModHWND:Cardinal;  // Module Handle of this DLL;
 26 | originalBytes:Array[0..4] of byte;  //Original Bytes of Redirected API for Restoration
 27 | RedirectedModHWND:Cardinal;//Module Handle of Redirected DLL;
 28 | 
 29 | 
 30 | Procedure PatchMemoryByte(VirtualAddress:Integer; val:Byte; IsWriteProtected:Boolean);
 31 | var
 32 | Tmp:Cardinal;
 33 | Begin
 34 | if VirtualAddress<0 then exit;
 35 | 
 36 | if IsWriteProtected=true then
 37 | if VirtualProtect(Pointer(VirtualAddress), 1, PAGE_EXECUTE_READWRITE, Tmp)=false then exit;
 38 | 
 39 | PByte(VirtualAddress)^:=val;
 40 | End;
 41 | 
 42 | 
 43 | 
 44 | //////////////////////////////////////////////////////////////////////////////////////
 45 | Procedure DoYourStuff(returnAddress:Integer); STDCALL;//this is where you add your code;
 46 | Begin
 47 | 
 48 | End;
 49 | //////////////////////////////////////////////////////////////////////////////////////
 50 | 
 51 | 
 52 | 
 53 | Procedure FixFunction(); STDCALL; //Restores the redirected API bytes
 54 | Begin
 55 | CopyMemory(Pointer(RedirectedAPIAddr),@originalBytes[0],5);
 56 | End;
 57 | 
 58 | Procedure InjectionJmpProcedure; assembler;
 59 | label
 60 | noUnload,DoneUnloadSetup;
 61 | ASM
 62 | CMP [UnloadDLL],0
 63 | JE @noUnload
 64 | PUSH localModHWND//Module Handle of Injection.DLL
 65 | PUSH RedirectedAPIAddr //address of RedirectedAPI;
 66 | PUSH FreeLibAddr//Address of FreeLibrary;
 67 | PUSH EAX //VOLATILE REGISTER PRESERVATION SUPPORT FOR REGISTER BASED CALLS OR FASTCALL CONVENTIONS
 68 | MOV EAX, DWORD PTR DS:[ESP+$10]//Gets Return Address from Stack
 69 | JMP @DoneUnloadSetup
 70 | @noUnload:
 71 | PUSH RedirectedAPIAddr
 72 | PUSH EAX //VOLATILE REGISTER PRESERVATION SUPPORT FOR REGISTER BASED CALLS OR FASTCALL CONVENTIONS
 73 | MOV EAX, DWORD PTR DS:[ESP+$8]//Gets Return Address from Stack 
 74 | @DoneUnloadSetup:
 75 | PUSH EBX //VOLATILE REGISTER PRESERVATION SUPPORT FOR REGISTER BASED CALLS OR FASTCALL CONVENTIONS
 76 | PUSH ECX
 77 | PUSH EDX
 78 | PUSH EAX
 79 | CALL DoYourStuff
 80 | CALL FixFunction
 81 | POP EDX
 82 | POP ECX
 83 | POP EBX
 84 | POP EAX
 85 | RET
 86 | END;
 87 | 
 88 | Function LongJumpCalculator(location,destination:integer;VAR jmp:Cardinal):Boolean;
 89 | CONST SelfVal:integer=-5;
 90 | Begin
 91 | if (location<0) or (destination <0) then
 92 | Begin
 93 | result:=false;
 94 | exit;
 95 | End;
 96 | jmp:=SelfVal+(destination-location);
 97 | result:=true;
 98 | End;
 99 | 
100 | 
101 | Procedure InitilizeAndRedirect();
102 | var
103 | tmp,jmpval:Cardinal;
104 | Begin
105 | mimgbase:=GetModuleHandleW(nil);
106 | RedirectedModHWND:=GetModuleHandleW(@DLLOFAPI[1]);
107 | if RedirectedModHWND=0 then exit;
108 | 
109 | localModHWND:=GetModuleHandleW(@LOCALDLLNAME[1]);
110 | if localModHWND=0 then Exit;
111 | 
112 | tmp:=GetModuleHandleW(WideString('kernel32.dll'));
113 | if tmp=0 then Exit;
114 | 
115 | FreeLibAddr:=Cardinal(GetProcAddress(tmp,AnsiString('FreeLibrary')));
116 | if FreeLibAddr=0 then Exit;
117 | 
118 | RedirectedAPIAddr:=Cardinal(GetProcAddress(RedirectedModHWND,PAnsiChar(@RedirAPI[1])));
119 | if RedirectedAPIAddr= 0 then exit;
120 | 
121 | VirtualProtect(Pointer(RedirectedAPIAddr),10,PAGE_EXECUTE_READWRITE ,tmp);
122 | CopyMemory(@originalBytes[0],Pointer(RedirectedAPIAddr),5);
123 | LongJumpCalculator(Integer(RedirectedAPIAddr),Integer(@InjectionJmpProcedure),jmpval);
124 | PByte(RedirectedAPIAddr)^:=$e9;  //set jmp
125 | pCardinal(RedirectedAPIAddr+1)^:=jmpval;  //set jmp location
126 | End;
127 | 
128 | begin //Function Main
129 | 
130 | InitilizeAndRedirect;
131 | 
132 | end.
133 | 


--------------------------------------------------------------------------------
/Injection.dproj:
--------------------------------------------------------------------------------
  1 | 	<Project xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
  2 | 		<PropertyGroup>
  3 | 			<ProjectGuid>{7450D470-B7BC-49E2-97A8-FAF0031C6821}</ProjectGuid>
  4 | 			<ProjectVersion>12.3</ProjectVersion>
  5 | 			<MainSource>Injection.dpr</MainSource>
  6 | 			<Base>True</Base>
  7 | 			<Config Condition="'$(Config)'==''">Release</Config>
  8 | 			<Platform>Win32</Platform>
  9 | 			<AppType>Library</AppType>
 10 | 			<FrameworkType>None</FrameworkType>
 11 | 			<DCC_DCCCompiler>DCC32</DCC_DCCCompiler>
 12 | 		</PropertyGroup>
 13 | 		<PropertyGroup Condition="'$(Config)'=='Base' or '$(Base)'!=''">
 14 | 			<Base>true</Base>
 15 | 		</PropertyGroup>
 16 | 		<PropertyGroup Condition="'$(Config)'=='Release' or '$(Cfg_1)'!=''">
 17 | 			<Cfg_1>true</Cfg_1>
 18 | 			<CfgParent>Base</CfgParent>
 19 | 			<Base>true</Base>
 20 | 		</PropertyGroup>
 21 | 		<PropertyGroup Condition="'$(Config)'=='Debug' or '$(Cfg_2)'!=''">
 22 | 			<Cfg_2>true</Cfg_2>
 23 | 			<CfgParent>Base</CfgParent>
 24 | 			<Base>true</Base>
 25 | 		</PropertyGroup>
 26 | 		<PropertyGroup Condition="'$(Base)'!=''">
 27 | 			<GenDll>true</GenDll>
 28 | 			<DCC_UnitAlias>WinTypes=Windows;WinProcs=Windows;DbiTypes=BDE;DbiProcs=BDE;DbiErrs=BDE;$(DCC_UnitAlias)</DCC_UnitAlias>
 29 | 			<DCC_ImageBase>00400000</DCC_ImageBase>
 30 | 			<DCC_Platform>x86</DCC_Platform>
 31 | 		</PropertyGroup>
 32 | 		<PropertyGroup Condition="'$(Cfg_1)'!=''">
 33 | 			<DCC_LocalDebugSymbols>false</DCC_LocalDebugSymbols>
 34 | 			<DCC_Define>RELEASE;$(DCC_Define)</DCC_Define>
 35 | 			<DCC_SymbolReferenceInfo>0</DCC_SymbolReferenceInfo>
 36 | 			<DCC_DebugInformation>false</DCC_DebugInformation>
 37 | 		</PropertyGroup>
 38 | 		<PropertyGroup Condition="'$(Cfg_2)'!=''">
 39 | 			<DCC_Define>DEBUG;$(DCC_Define)</DCC_Define>
 40 | 		</PropertyGroup>
 41 | 		<ItemGroup>
 42 | 			<DelphiCompile Include="Injection.dpr">
 43 | 				<MainSource>MainSource</MainSource>
 44 | 			</DelphiCompile>
 45 | 			<BuildConfiguration Include="Debug">
 46 | 				<Key>Cfg_2</Key>
 47 | 				<CfgParent>Base</CfgParent>
 48 | 			</BuildConfiguration>
 49 | 			<BuildConfiguration Include="Base">
 50 | 				<Key>Base</Key>
 51 | 			</BuildConfiguration>
 52 | 			<BuildConfiguration Include="Release">
 53 | 				<Key>Cfg_1</Key>
 54 | 				<CfgParent>Base</CfgParent>
 55 | 			</BuildConfiguration>
 56 | 		</ItemGroup>
 57 | 		<Import Condition="Exists('$(BDS)\Bin\CodeGear.Delphi.Targets')" Project="$(BDS)\Bin\CodeGear.Delphi.Targets"/>
 58 | 		<Import Condition="Exists('$(APPDATA)\Embarcadero\$(BDSAPPDATABASEDIR)\$(PRODUCTVERSION)\UserTools.proj')" Project="$(APPDATA)\Embarcadero\$(BDSAPPDATABASEDIR)\$(PRODUCTVERSION)\UserTools.proj"/>
 59 | 		<ProjectExtensions>
 60 | 			<Borland.Personality>Delphi.Personality.12</Borland.Personality>
 61 | 			<Borland.ProjectType/>
 62 | 			<BorlandProject>
 63 | 				<Delphi.Personality>
 64 | 					<VersionInfo>
 65 | 						<VersionInfo Name="IncludeVerInfo">True</VersionInfo>
 66 | 						<VersionInfo Name="AutoIncBuild">False</VersionInfo>
 67 | 						<VersionInfo Name="MajorVer">1</VersionInfo>
 68 | 						<VersionInfo Name="MinorVer">0</VersionInfo>
 69 | 						<VersionInfo Name="Release">0</VersionInfo>
 70 | 						<VersionInfo Name="Build">0</VersionInfo>
 71 | 						<VersionInfo Name="Debug">False</VersionInfo>
 72 | 						<VersionInfo Name="PreRelease">False</VersionInfo>
 73 | 						<VersionInfo Name="Special">False</VersionInfo>
 74 | 						<VersionInfo Name="Private">False</VersionInfo>
 75 | 						<VersionInfo Name="DLL">False</VersionInfo>
 76 | 						<VersionInfo Name="Locale">1033</VersionInfo>
 77 | 						<VersionInfo Name="CodePage">1252</VersionInfo>
 78 | 					</VersionInfo>
 79 | 					<VersionInfoKeys>
 80 | 						<VersionInfoKeys Name="CompanyName"/>
 81 | 						<VersionInfoKeys Name="FileDescription"/>
 82 | 						<VersionInfoKeys Name="FileVersion">1.0.0.0</VersionInfoKeys>
 83 | 						<VersionInfoKeys Name="InternalName"/>
 84 | 						<VersionInfoKeys Name="LegalCopyright"/>
 85 | 						<VersionInfoKeys Name="LegalTrademarks"/>
 86 | 						<VersionInfoKeys Name="OriginalFilename"/>
 87 | 						<VersionInfoKeys Name="ProductName"/>
 88 | 						<VersionInfoKeys Name="ProductVersion">1.0.0.0</VersionInfoKeys>
 89 | 					</VersionInfoKeys>
 90 | 					<Excluded_Packages>
 91 | 						<Excluded_Packages Name="$(BDSBIN)\dclipworks9.bpl">/n software inc. - IP*Works! V9 - www.nsoftware.com</Excluded_Packages>
 92 | 						<Excluded_Packages Name="$(BDSBIN)\dclipworksssl9.bpl">/n software inc. - IP*Works! SSL V9 - www.nsoftware.com</Excluded_Packages>
 93 | 						<Excluded_Packages Name="C:\Users\Public\Documents\RAD Studio\8.0\Bpl\KHexEditor_DXE.bpl">KHexEditor - design time package</Excluded_Packages>
 94 | 						<Excluded_Packages Name="$(BDSBIN)\dcloffice2k150.bpl">Microsoft Office 2000 Sample Automation Server Wrapper Components</Excluded_Packages>
 95 | 						<Excluded_Packages Name="$(BDSBIN)\dclofficexp150.bpl">Microsoft Office XP Sample Automation Server Wrapper Components</Excluded_Packages>
 96 | 						<Excluded_Packages Name="$(BDSBIN)\bcboffice2k150.bpl">Embarcadero C++Builder Office 2000 Servers Package</Excluded_Packages>
 97 | 						<Excluded_Packages Name="$(BDSBIN)\bcbofficexp150.bpl">Embarcadero C++Builder Office XP Servers Package</Excluded_Packages>
 98 | 						<Excluded_Packages Name="G:\TeeChart2015RADXE\MAINDIR\Delphi15\Bin\DclTeePro915.bpl">TeeChart Pro 2015 Components</Excluded_Packages>
 99 | 					</Excluded_Packages>
100 | 					<Source>
101 | 						<Source Name="MainSource">Injection.dpr</Source>
102 | 					</Source>
103 | 				</Delphi.Personality>
104 | 				<Platforms>
105 | 					<Platform value="Win32">True</Platform>
106 | 				</Platforms>
107 | 			</BorlandProject>
108 | 			<ProjectFileVersion>12</ProjectFileVersion>
109 | 		</ProjectExtensions>
110 | 	</Project>
111 | 


--------------------------------------------------------------------------------