Elmue

See https://github.com/fancycode/MemoryModule/pull/52/files

Why do you want to load ntdll.dll or kernel32.dll into any running process? These are the first DLLs which Windows loads into ANY process as the first DLLs when the...

It does not make any sense to load ntdll.dll into a running process. Windows automatically loads ntdll.dll into EVERY process as the very first DLL when the process is started....

See https://github.com/fancycode/MemoryModule/pull/96/files

In the execption handler you should return ERROR_NOACCESS. Windows returns this error code when there was internally a crash in a function that has been caught. Your comment // Exception-handling...

It is definitely a bug. It results in a crash. And it is wrong to set the flags only for a part of a section instead of the entire section....

Hello BigJim I'am not working anymore on this. I don't have plans to make yet another fork of this project which already has lots of forks. If you like, you...

If a process uses GUI this DLL is already loaded. There is no need for you to load it manually. Use GetModuleHandle("user32.dll") instead!

I cannot see ANY sense in calling FlushInstructionCache(). You want to execute this function after relocating the code section. But this happens long before the code is executed by calling...

I don't know what you want to say with "additional APIs with unclear functions" ???? However I cannot see the sense of calling this function. You did not help to...