For a long time, I've been trying to come up with the design for a generic, stealthy code injector and general application hacking framework.  It should be easy to manipulate any application to add new functionality, fix bugs, automate tasks, mine data, etc.

Yesterday I stumbled upon a piece of software called Inner Space which allows fairly simple manipulation of D3d8/9 games.  It's limited, but they're on the right track with it.  However, it's commercial and closed source (smart idea, it's a tough thing to pull off and there are plenty of gamers willing to pay for an edge), and I'd rather an open source framework I can hack on.

I'd like to start collecting ideas for a generic application hacking framework.  Here's a list of what I've thought up so far.  If you don't see something you'd like, please drop me a comment.

• Stealthy code injection via selectable means
• GUI injection on GDI/OpenGL/D3D9
• Screenscraping automation (select a region containing the data you want and map different possible images (e.g. card suits in a poker bot) to different values that can be used from code)
• Managed instance launching and intercommunication
• Easy network/file interception (this could be used to use a different proxy for each running instance of an application, for instance)

I'm sure I've missed a few, but I'll be updating this to add new ideas of my own and your contributions, so please send in your ideas.

Happy Hacking,

~ dieken

I've been tossing around the idea of writing mini-books on specific subjects for a while.  They'd be 40-75 pages, most likely, and sell for <$15 (physical; ebooks would be cheaper of course).  With the services Amazon is offering, it's fairly straightforward to publish them.

Here's a small list of the subjects I've considered covering:

• Code injection techniques that Actually Work (TM) -- that is, explain how to get into a process and then dynamically patch any machine code to do what you want, without special casing for the target.
• Hiding code modification in userspace
• Emulation 101 -- this is badly needed, as evidenced by how much I had to explain in this Stack Overflow post.
• Dynarec techniques -- again, there's simply nothing there
• Finding and understanding the code you're interested in -- there are a few good reversing books, but none of them dig down into how to achieve your goals in real applications (read: not malware)

I've considered others but they're escaping me at the moment.

Now, I have a few questions.  Would anyone be interested in buying these minibooks?  What price range would you buy them at?  Which books would you be interested in?  If they were released Creative Commons, would you still buy them?

Another thing I've been pondering for a while is using the street performer protocol to make money off this work.  Ask for $X ($1000-2500 maybe?) and then the book is released Creative Commons.  I can still publish via Amazon (at a lower rate, of course), but the book will be freely distributable.  Anyone think they'd be interested in this model?

Please let me know what you think.

Happy Hacking,

~ dieken

Welcome to my new blog.  Interrupted is going to be my dumping ground for all things hacking.  You'll get reversing tools, reversing journals, stream of consciousness dumps of protocol/device/code hacking, and probably a lot of ranting -- there's always plenty of fodder for that.

If anyone has questions, comments, or requests (for tools, things to be hacked, lessons on a subject, etc), feel free to drop a comment here or contact me via the means listed in my Stack Overflow profile.

Happy hacking,

~ dieken