DllUnInject read target list

Author: michaelchen1996

APIHOOK/DllUnInject/DllUnInject.cpp

@@ -7,21 +7,92 @@
 
 int main()
 {
-	
+	WCHAR szCurrentDirectory[MAX_PATH];
+
 	//SetPrivilege
 	if (!SetPrivilege(SE_DEBUG_NAME, TRUE))
 	{
 		OutputDebugString(L"SetPrivilege ERROR\n");
 		return 0;
 	}
 
-	DoSearchProcess(NULL);
-	//DoReleaseSemaphoreStatus();
+	GetModuleDirectory(szCurrentDirectory);
+
+	ReadTargetListAndDo(szCurrentDirectory);
+	
+	DoReleaseSemaphoreStatus();
 
     return 0;
 }
 
 
+void GetModuleDirectory(PWCHAR szCurrentDirectory)
+{
+	DWORD dwCurDirPathLen;
+	dwCurDirPathLen = GetModuleFileName(NULL, szCurrentDirectory, MAX_PATH);
+	if (!dwCurDirPathLen)
+	{
+		printf("GetModuleFileName ERROR\n");
+		return;
+	}
+	SIZE_T i = 0;
+	StringCbLengthW(szCurrentDirectory, MAX_PATH, &i);
+	if (0 == i)
+	{
+		return;
+	}
+	for (; i > 0 && L'\\' != szCurrentDirectory[i - 1]; i--) {}
+	szCurrentDirectory[i] = L'\0';
+	OutputDebugString(szCurrentDirectory);
+	OutputDebugString(L"\n");
+
+}
+
+void ReadTargetListAndDo(LPCWCHAR szCurrentDirectory) {
+	WCHAR szListDirectory[MAX_PATH];
+	WCHAR szProcName[MAX_PATH];
+	WCHAR szBuf[2];
+	DWORD dwNumRead;
+	HANDLE hFile = NULL;
+
+	StringCbCopy(szListDirectory, MAX_PATH, szCurrentDirectory);
+	StringCbCat(szListDirectory, MAX_PATH, L"TargetList.txt");
+	OutputDebugString(szListDirectory);
+	OutputDebugString(L"\n");
+	hFile = CreateFile(szListDirectory, GENERIC_READ, 0, NULL, OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, NULL);
+	if (INVALID_HANDLE_VALUE == hFile)
+	{
+		OutputDebugString(L"TargetList.txt NOT FOUND\n");
+		return;
+	}
+	StringCbCopy(szProcName, MAX_PATH, L"");
+	while (TRUE)
+	{
+		ReadFile(hFile, szBuf, 2, &dwNumRead, NULL);
+		szBuf[1] = L'\0';
+		if (0 == dwNumRead)
+		{
+			CloseHandle(hFile);
+			break;
+		}
+		if (L'\r' == *szBuf)
+		{
+			OutputDebugString(szProcName);
+			OutputDebugString(L" in TargetList\n");
+			DoSearchProcess(szProcName);
+			StringCbCopy(szProcName, MAX_PATH, L"");
+			continue;
+
+		}
+		if (L'\n' == *szBuf)
+		{
+			continue;
+		}
+		StringCbCat(szProcName, MAX_PATH, szBuf);
+	}
+}
+
+
 void DoSearchProcess(LPCWCHAR szProcessName)
 {
 	DWORD dwPId = 0;

APIHOOK/DllUnInject/DllUnInject.h

@@ -1,7 +1,7 @@
 #pragma once
 
-#define MAX_TARGET_NUM 10
-
+void GetModuleDirectory(PWCHAR szCurrentDirectory);
+void ReadTargetListAndDo(LPCWCHAR szCurrentDirectory);
 void DoSearchProcess(LPCWCHAR dwProcesName);
 void DoSearchModule(DWORD dwProcessId);
 void DoDllUnInject(DWORD dwProcessId, HMODULE hModule);

APIHOOK/DllUnInject/stdafx.h

@@ -11,6 +11,7 @@
 #include <tchar.h>
 #include <windows.h>
 #include <TlHelp32.h>
+#include <strsafe.h>
 
 
 

APIHOOK/Monitor/Monitor.cpp

@@ -9,6 +9,20 @@ int wmain(int argc, wchar_t *argv[], wchar_t *envp[])
 
 	if (2 != argc) {
 		ShowHelp();
+		int i;
+		scanf_s("%d", &i);
+		switch(i)
+		{
+		case 1:
+			StartMonitor();
+			break;
+		case 2:
+			StopMonitor();
+			break;
+		case 3:
+			RestartMonitor();
+			break;
+		}
 	}
 	else if (CSTR_EQUAL == CompareString(LOCALE_SYSTEM_DEFAULT, LINGUISTIC_IGNORECASE, argv[1], -1, L"start", -1))
 	{

APIHOOK/TESTAPI/TESTAPI.cpp

@@ -3,6 +3,6 @@
 
 int main()
 {
-	for (;;);
+	Sleep(INFINITE);
 	return 0;
 }