Home Articles Series
Feedback

How does the detour crate work?

Oct 19, 2022 rust · hooking fasterthanlime
Watch on YouTube

We want to hook a function, so that our code gets called... but we also want the original code to execute. How the heck does that work?

00:00 Where were we
02:08 Disassembling for fun and profit
05:47 Double buffering, for some reason
07:25 Why detouring isn't trivial
08:56 Control flow in assembly
10:04 Registers and the AMD64 ABI
11:18 Functions and how to call them
13:14 The JMP instruction
14:01 Simple obfuscation techniques
15:13 How it all works
17:53 Homework assignment
18:12 Outtakes

Discuss this video on /r/fasterthanlime

If you liked what you saw, please support my work!

Github logo Donate on GitHub Patreon logo Donate on Patreon

Another random video

video cover image
This is a video about video
Sep 08, 2022
40 minute watch
video · mp4

A descent into madness.

You wouldn't remux a movie. Or would you?

Watch now

You can watch more videos over there

Looking for the homepage?
Mastodon YouTube Patreon GitHub Sponsors RSS
About Legal Notice Privacy Policy Terms and Conditions
 
Recommended reading:
Sam Rose Luna Xe Iaso Dan Luu