Abstract:This paper mainly explores two basic techniques in the field of malicious-code attack and defense.For the malicious-code attack,it discusses respectively DLL injection technique and API hook technique,then analyzes the realization method in each technique,while for the malicious-code defense,the corresponding security detection methods based individually on compiler,virtual machine,and operating system are pointed out.In addition,their characteristics are analyzed,including their advantages and disadvantages.So this paper may offer certain beneficial helps to the relevant technologies of malicious-code attack and defense in the infosec research field.

Study on Windows Legal Process Information Injection and API Hook Techniques