读内存类

柳萱公子 · · 编程&逆向技术交流
0

本文共计4029个字,预计阅读时长16.1分钟。

不知道哪里弄的了 拿走回个1 ```cpp #pragma once #ifndef MEMORY_HPP #define MEMORY_HPP #include #include #include #include struct PModule { DWORD dwBase; DWORD dwSize; }; class Memory { private: HANDLE _process; DWORD _pId; public: inline bool Attach(const char* pName, DWORD dwAccess = PROCESS_ALL_ACCESS) { if (pName = "") return false; HANDLE handle = CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, NULL); PROCESSENTRY32 entry{}; entry.dwSize = sizeof(entry); do { if (!strcmp(_bstr_t(entry.szExeFile), pName)) { _pId = entry.th32ProcessID; CloseHandle(handle); _process = OpenProcess(dwAccess, false, _pId); return true; } } while (Process32Next(handle, &entry)); return false; } inline PModule GetModule(const char* pModule) { HANDLE module = CreateToolhelp32Snapshot(TH32CS_SNAPMODULE, _pId); MODULEENTRY32 entry{}; entry.dwSize = sizeof(entry); do { if (!strcmp(_bstr_t(entry.szModule), pModule)) { CloseHandle(module); return PModule{ reinterpret_cast(entry.hModule), entry.modBaseSize }; } } while (Module32Next(module, &entry)); return PModule{ 0, 0 }; } template T Read(const DWORD dwAddress) { T _read{}; ReadProcessMemory(_process, LPVOID(dwAddress), &_read, sizeof(T), NULL); return _read; } std::string ReadCharArray(const DWORD dwAddress) { char _read[128] = { 0 }; ReadProcessMemory(_process, LPVOID(dwAddress), _read, sizeof(char[128]), NULL); return std::string(_read); } template void Write(const DWORD dwAddress, const T value) { WriteProcessMemory(_process, LPVOID(dwAddress), &value, sizeof(T), NULL); } inline void CreateThread(uintptr_t address, LPVOID parameter = 0){ HANDLE hThread = CreateRemoteThread(_process, 0, 0, reinterpret_cast(address), parameter, 0, 0); if (!hThread){ return; } WaitForSingleObject(hThread, 5000); CloseHandle(hThread); } void Exit() { CloseHandle(_process); } }; extern Memory mem; #endif ```

 

#pragma once 
#ifndef MEMORY_HPP 
#define MEMORY_HPP 
#include <Windows.h>
#include <TlHelp32.h>
#include <string>
#include <comdef.h>
struct PModule {
	DWORD dwBase;
	DWORD dwSize;
};
class Memory {
	private: HANDLE _process;
	DWORD _pId;
	public: inline bool Attach(const char* pName, DWORD dwAccess = PROCESS_ALL_ACCESS) {
		if (pName = "") return false;
		HANDLE handle = CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, NULL);
		PROCESSENTRY32 entry {
		};
		entry.dwSize = sizeof(entry);
		do {
			if (!strcmp(_bstr_t(entry.szExeFile), pName)) {
				_pId = entry.th32ProcessID;
				CloseHandle(handle);
				_process = OpenProcess(dwAccess, false, _pId);
				return true;
			}
		}
		while (Process32Next(handle, &entry));
		return false;
	}
	inline PModule GetModule(const char* pModule) {
		HANDLE module = CreateToolhelp32Snapshot(TH32CS_SNAPMODULE, _pId);
		MODULEENTRY32 entry {
		};
		entry.dwSize = sizeof(entry);
		do {
			if (!strcmp(_bstr_t(entry.szModule), pModule)) {
				CloseHandle(module);
				return PModule {
					reinterpret_cast<DWORD>(entry.hModule), entry.modBaseSize
				};
			}
		}
		while (Module32Next(module, &entry));
		return PModule {
			0, 0
		};
	}
	template<class T>T Read(const DWORD dwAddress) {
		T _read {
		};
		ReadProcessMemory(_process, LPVOID(dwAddress), &_read, sizeof(T), NULL);
		return _read;
	}
	std::string ReadCharArray(const DWORD dwAddress) {
		char _read[128] = {
			0
		};
		ReadProcessMemory(_process, LPVOID(dwAddress), _read, sizeof(char[128]), NULL);
		return std::string(_read);
	}
	template<class T>void Write(const DWORD dwAddress, const T value) {
		WriteProcessMemory(_process, LPVOID(dwAddress), &value, sizeof(T), NULL);
	}
	inline void CreateThread(uintptr_t address, LPVOID parameter = 0) {
		HANDLE hThread = CreateRemoteThread(_process, 0, 0, reinterpret_cast<LPTHREAD_START_ROUTINE>(address), parameter, 0, 0);
		if (!hThread) {
			return;
		}
		WaitForSingleObject(hThread, 5000);
		CloseHandle(hThread);
	}
	void Exit() {
		CloseHandle(_process);
	}
};
extern Memory mem;
#endif
最后于 2023-2-4 被柳萱公子编辑 ,原因:
  投诉举报
1032
最新回复 ( 0 )
全部楼主

  • 暂无评论