Rapid7 Vulnerability & Exploit Database

Windows Manage Reflective DLL Injection Module

Back to Search

Windows Manage Reflective DLL Injection Module



This module will inject a specified reflective DLL into the memory of a process, new or existing. If arguments are specified, they are passed to the DllMain entry point as the lpvReserved (3rd) parameter. To read output from the injected process, set PID to zero and WAIT to non-zero. Make sure the architecture of the DLL matches the target process.


  • Ben Campbell <eat_meatballs@hotmail.co.uk>
  • b4rtik




Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':

Time is precious, so I don’t want to do something manually that I can automate. Leveraging the Metasploit Framework when automating any task keeps us from having to re-create the wheel as we can use the existing libraries and focus our efforts where it matters.

– Jim O’Gorman | President, Offensive Security