Skip to content

Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

Notifications You must be signed in to change notification settings

infosecguerrilla/ReflectiveSOInjection

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
 
 
 
 
 
 

Repository files navigation

Reflective SO Injection

Reflective SO Injection was inspired by the concept of Reflective DLL Injection. It is virtually the same thing, but implemented to allow loading of SO (Shared Objects) on Linux. Currently only x86_64 is supported and it is only a prototype. The loader code was written by myself, but with the injection code I stole quite a bit of code from the linux-inject project since there is no sense in redoing what has already been done.

If you are interested in reading more about how this works please read the following blog post https://infosecguerrilla.wordpress.com/2016/07/21/reflective-so-injection/

Known Issues

  1. SELinux can prevent creation of a RWX mapping in target process causing loader to fail.

Tested on

  • Ubuntu 14.04 x86_64
  • Debian 8 x86_64
  • Centos 6.8 x86_64

About

Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages