DEV Community


Discussion on: Execute a child process that is not on the filesystem but in memory?

phlash909 profile image
Phil Ashby

As has been noted - using techniques like this will make your code smell like malware, and probably set off a heap of heuristic alerts, however for learning purposes, Joachim Bauch provides a good tutorial on Windows, and of course SO has things to say:

Effectively you are re-implementing the binary loader (PE/COFF or ELF usually) that's built into the kernel.

Note that this becomes waay easier with a runtime like the JVM, which explicitly supports creating new executable objects from memory buffers:

Forem Open with the Forem app