Skip to content
/ Syren Public

A lightweight, Command Line General Purpose DLL Injector following Data Oriented Design

License

GPL-3.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

M-T3K/Syren

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
.vscode
.vscode
 
 
Syren
Syren
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
TODO.md
TODO.md
 
 

Repository files navigation

Syren

Welcome to Syren.

Syren is a CLI General Purpose Dynamic Link Library (Dll) Injector coded from scratch in C++. The Injector itself was written with DOD (Data Oriented Design) in mind. A UI might be added in the future once all of the main features of Syren-CLI are implemented.

List of Features

  • Standard (Load Library) DLL Injection.
  • Support for a variety of command line arguments i.e. Help Message when calling Syren.exe -h.
  • Sample DLL written in D designed to fuzz Syren (and to teach myself D, of course).

Prerequesites

Ensure you have git installed. You can download it from here. Syren is currently a Windows only too, so you should get Git for Windows. I also recommend CMDER. Then, make sure you have the Latest version of Microsoft's Visual Studio installed, with at least the following Workloads enabled:

  • Desktop development with C++
  • Universal Windows Platform development

I also recommend the following:

  • .NET desktop development
  • Linux development with C++
  • .NET Core cross-platform developent
  • Game development with C++

It is important to have the following Individual Components too:

  • Windows Universal CRT SDK
  • C++/CLI support

Make sure you are installed Visual Studio and not Visual Studio Code (though I also recommend that you install that one, it is not required). Then you need to install Visual D. If you use Visual Studio Code, I also recommend a D extension. The one I use is code-d.

Downloading and Compiling Syren

λ cd go\to\directory\ to go to the directory you want.

Then:

λ git clone https://github.com/M-T3K/Syren.git

λ cd Syren\Syren to go to the location of the Syren Solution.

From There:

λ start Syren.sln to open the Syren Solution in Visual Studio.

λ code . if you are using Visual Studio Code to open the folder or λ code-insiders . if you are using the nightly VSCode build.

From within Visual Studio, you can right click the solution and click Build Solution or press Ctrl. + Shift + B to compile Syren. Make sure you are on Release Mode, and that you have chosen the right version. The Folders \Output\ and \build\ should be created, and

Usage

First, make sure that you've compiled the right version of Syren, and that your DLL and the target process are the same version too (x86/x64). For these instructions, I will be using the x86 version of Syren and DDllTest.dll. If you would like to use the x64 version, just write 'x64' instead of 'x86'. Then, from Syren's Directory in a CMD/CMDER/PowerShell/...:

  • λ Syrenx86.exe to run Syren using default settings. You need to configure it manually before compilation by changing the __DEFAULT_DLL and __DEFAULT_PROCESS preprocessor instructions.

  • λ Syrenx86.exe -h will print help and additional information about each individual flag.

  • λ Syrenx86.exe [flags] -d DDllTestx86.dll -p my_process.exe will inject DDllTestx86.dll into my_process.exe. The long version of -d and -p are --dll and --process respectively. [flags] represents any flags you may want to specify. These include:

    • -v/--verbose: for extra information printed to the command line.
    • -l/--log: To log information on a file. You may or may not include a filename as argument. By default, it is Syren.log.
    • -e/--experimental: To use Experimental C++ features.

  • Example:

    λ Syrenx86.exe -v --log -e -d DDllTestx86.dll -p my_process.exe will inject DDllTestx86.dll to my_process.exe, while documenting the entire process to the command line (-v), logging things to a file called Syren.log (--log) (since no other file was specified), and use experimental C++ features during the process of injection (-e).

Upcoming Features

  • More advanced Injection techniques.
  • SyrenUI - An Alternative version with a cleaner User Interface, probably using Qt, or something else.

High Priority Upcoming Features

  • Manual Mapping of Dll.

F.A.Q.

Q: Why do you use Trailing Return Type (TRT) ?

A: TRT is a better alternative to traditional C/C++ function declaration syntax because it lets you have a single, more consistent syntax in your projects, specially if you use Lambdas (Since they use this syntax too). Also, all the function names will start at exactly the same place (5th Character). However, this should only be done in projects over which you have full control; since most projects use the old syntax as a convention and it would be inappropriate to change it. Overall, you should stick to one of these syntaxes only. Also, SFINAE. Therefore, TRT improves your code readability when properly used.

Q: When is 'X' feature going to be ready?

A: I don't have much free time, and I've got many projects to finish. That being said, I'm still working on Syren, and new features will come when ready.

Q: I want to contribute. How should I do it?

A: Via Pull Request. State exactly what you are trying to accomplish and write a summary of how you achieved it. Keep your code as readable and simple as possible. Use DOD.

Contribution Guidelines

As you may have seen, the project is structured in a 'weird' way (Specially so if you have an OOP Background). This is because I'm designing the project with data on my mind. In other words, Syren follows DOD. When contributing, please, follow the following guidelines:

  • About OOP: Objects are data structures upon which you have full control over their life cycle. If you do not need data, don't use objects: use a namespace. If you do not need to control their life cycle or it is a single thing, use a struct instead. A struct may use Constructors and Destructors if they are useful (They're just functions at the end of the day. Also, OOP projects are bloated with unnecessary Objects. Way too often in way too many projects there's way too many objects that make the code less readable, increase the amount of lines, and impact performance negatively (Objects have a pretty big overhead when accessing the heap one at a time). They should not be used lightly. OOP is useful if used correctly, but spamming Objects without thinking is not the way to go.

  • About Functional Programming: There are times where functional programming has a time and a place. Syren is not a functional programming project. However, some features native to this paradigm are used (and encouraged!) such as lambdas and TRT syntax for function declaration. Lambdas are used to, essentially, nest functions in an elegant manner; since otherwise implementations of this feature are compiler dependent. For any other usage, treat them like a basic function (See the next section).

  • About Functions and Methods: When thinking about creating a new function, ask yourself: "Will I need this code more than once?". If not, don't bother creating it. Functions and methods should be created with reusability in mind. If you only need something once, you should not make a function. Exceptions to this include things like overloads (which tend to be easy to implement), or the creation of functions that improve readability (such as having a different injection function for each type of injection). Regarding the stupid idea that functions should always be less than 15 lines of code: ignore this advice. This, more often than not, reduces readability. If your function does something and doesn't share any code with another function, don't split it into several functions. It is as I stated before - functions are used for reusability.

  • Regarding libraries: I do not like using third party libraries, specially if I'm not going to be using them. Don't use third party libraries unless you are certain you will use most of it.

  • Summary: If you don't need an object, don't use it. If you don't need a function, don't create it. Keep your code small. Keep your code simple.

  • Don't adapt the problem to your code. Adapt your code to the problem.

  • https://cellperformance.beyond3d.com/articles/2008/03/three-big-lies.html

Naming Conventions

  • Variables:

    • Global Variables use Pascal Case. Example: Flags, DumpFile
    • Local Variables use snake_case.
    • Member Variables (Attributes, fields) come with an m_ in front to denote membership (Though you shouldn't be using these much).

  • Functions & Lambdas:

    • Snake case when composed of different words. Example: validate_process(), file_exists()
    • Lower case when name comes from an abbreviation. Example: fprint() is short for File Print.
    • Additional capital letter if there is a descriptor. Example: fprintfLn() where Ln is a descriptor and stands for Line, or injectLoadlibrary where Loadlibrary is the descriptor and denotes the usage of LoadLibrary.
    • The reason Pascal Case is not used for functions is to create a clear division between Windows API function calls (which use Pascal Case) and the rest of the code.

  • kebab-case makes my eyes bleed. Blame e-lisp.

About

A lightweight, Command Line General Purpose DLL Injector following Data Oriented Design

Resources

Readme

License

GPL-3.0 license
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages