Metadata-Version: 2.4
Name: dllproxy
Version: 1.0.0
Summary: Generate And Build a Windows DLL Proxy For Any DLL
Home-page: https://github.com/gilgoolon/dllproxy
Author: Gil Alpert
Author-email: alpertgil@gmail.com
License: MIT
Description-Content-Type: text/markdown
License-File: LICENSE
Requires-Dist: pefile
Dynamic: author
Dynamic: author-email
Dynamic: description
Dynamic: description-content-type
Dynamic: home-page
Dynamic: license
Dynamic: license-file
Dynamic: requires-dist
Dynamic: summary

# dllproxy

A tool for generating Windows DLL proxies with automatic export forwarding.

---

Now available as a [PyPI package](https://pypi.org/project/dllproxy/)!

## Overview

The DLL Proxy Generator creates fully functional Visual Studio C++ projects that can intercept calls to any Windows DLL. This enables various scenarios including:

- Function call interception and monitoring
- API hooking and modification
- DLL replacement without changing application code
- Debugging and reverse engineering

## How It Works

DLL proxying works by creating a DLL with the same name and exports as the original, but which forwards calls to the actual implementation DLL (renamed or relocated). The proxy sits between the application and the real DLL, allowing you to:

1. Intercept function calls
2. Modify parameters or return values
3. Log API usage
4. Forward calls to the original implementation

## Requirements

- **Windows operating system**
- **Python 3.7+**
- **Visual Studio** (for building the generated projects)

## Installation

Install directly from PyPI:

```bash
pip install dllproxy
```

Alternatively, clone the source:

```bash
# Clone the repository
git clone https://github.com/gilgoolon/dllproxy.git
cd dllproxy

# Install the package
pip install -e .
```

## Usage

### CLI Usage

Once installed, you can use the `dllproxy-generate` command-line tool:

```bash
dllproxy-generate -s <source_dll> -d <worker_dll> -o <output_directory>
```

Where:
- `<source_dll>` is the path to the DLL you want to proxy
- `<worker_dll>` is the path where the original DLL will be relocated
- `<output_directory>` is where the proxy project will be generated

If you don't need the source or simply want to build, use:

```bash
dllproxy-generate -s <source_dll> -d <worker_dll> -b
```

### Example

```bash
# Generate a proxy for kernel32.dll
dll-proxy-generator -s C:\Windows\System32\kernel32.dll -d C:\Windows\System32\malicious_dll.dll -o .\KernelProxy
```

### Command Line Options

| Option | Description |
|--------|-------------|
| `-s`, `--source-dll` | Path to the DLL to proxy (required) |
| `-d`, `--worker-dll` | Path to the actual implementation DLL (required) |
| `-o`, `--output` | Output directory for the generated project |
| `-b`, `--build` | Build the project after generation |
| `-p`, `--platform` | Target platform (x86 or x64, default: x64) |

## Proxy Features

### Forever Retries
The DLL keeps a worker thread alive forever - trying to start the destination DLL.

### Mutex Synchornization
A system-wide mutex (with a constant GUID) is used to make sure the destination dll only has One instance loaded at a time. 

### Library Name
Source.def decalres the name of the source DLL name.

### Protections
Protections are used to catch exceptions from the worker dll to make the proxy safe.

## Customizing the Proxy

You can modify the generated proxy to add custom logic:

1. Open the generated project in Visual Studio
2. Edit the function implementations in the source files
3. Add your custom code before/after forwarding calls to the original DLL

## Advanced Usage

### Logging Function Calls

The template includes hooks for adding logging to all function calls:

```cpp
// Example of adding logging to a proxied function
BOOL WINAPI CreateProcessW_Proxy(/* parameters */) {
    // Log the call
    LogFunctionCall("CreateProcessW", /* parameters */);
    
    // Forward to original implementation
    return Original_CreateProcessW(/* parameters */);
}
```

### Deployment

To deploy your proxy:

1. Build the proxy DLL
2. Rename the original DLL to match your worker DLL path if needed
3. Place your proxy DLL in the original location
4. The application will now load your proxy instead

## Troubleshooting

- **Missing exports**: Ensure the proxy exports all functions from the original DLL
- **DLL loading issues**: Check that the worker DLL path is correct and accessible
- **Build errors**: Verify Visual Studio and required components are installed

## License

This project is licensed under the MIT License - see the LICENSE file for details.

## Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

## Acknowledgements

- [pefile](https://github.com/erocarrera/pefile) for PE file parsing
