Hola MAXIUM.
Mi humilde parecer es que es un lindo e ingenioso código pero de estrecho campo de aplicacion. En cuanto al uso sugerido en el enlace, coincido con lo que expresa
Remy Lebeau:
Cita:
|
Also, ExecuteFromMem() works by starting a new process for ExistingDummy.exe in a suspended state, overwrites its memory with the input data, and then resumes the process. I don't think that is going to play very well with UAC and DEP technologies, especially UAC, which is only invoked at process creation time. The safest option would be to simply write the TMemoryStream data to a temporary .exe file and then execute it normally instead.
|
Por otro lado no creo que moleste a los antivirus, lo probé bajo la supervisión del Avira y no se quejó.
Saludos
