Can I inject a thread in a remote app domain from C#

Question

I was wondering if its possible to inject a thread into a remote app domain running in a separate process.

My guess is that I could do this using the debugging interfaces (ICorDebug) but I was wondering if there is any other way?

score 1 · Answer 1 · answered Oct 08 '08 at 22:08

1

There was recently an announcement of a new facility Mono provides to do just this. See this post on assembly injection.

answered Oct 08 '08 at 22:08

Rob Walker

46,588
15
99
136

score 0 · Answer 2 · answered Oct 09 '08 at 20:14

Mike Stall has an interesting sample on how to use CreateRemoteThread to inject remote threads in managed apps.

This answer is still incomplete, cause I would like to run new code in the remote appdomain. I guess I could try creating 1 new thread that loads a library for me, and another that will call a place in my new library to do the work.

score 0 · Answer 3 · edited May 29 '13 at 02:13

0

There's another way by using SetThreadContext, and by changing the EIP of the target process. However I don't know how you would do that in C#.

edited May 29 '13 at 02:13

Taryn

242,637
56
362
405

answered Oct 09 '08 at 20:18

Ghirai

11
1
3

score 0 · Accepted Answer · answered Nov 13 '08 at 07:36

0

This can be done there is sample code in snoop It sets up a hook, and using managed c++ tells the appdomain to load an assembly. Really impressive ...

answered Nov 13 '08 at 07:36

Sam Saffron

128,308
78
326
506

Can I inject a thread in a remote app domain from C#

4 Answers4

Linked