Giriş yap
En iyi yollayıcılar
| Hello EMO |
| |||
| EMO |
| |||
| eMoStyLe |
| |||
| BesimBICER |
| |||
| GameKinG |
| |||
| Crysis |
| |||
| ~>!.DεvιLρяιεsт.!<~ |
| |||
| MeTaL |
| |||
| TrueCrime |
| |||
| djhayal3t |
|
Istatistikler
Toplam 203 kayıtlı kullanıcımız varSon kaydolan kullanıcımız: crayzboy76
Kullanıcılarımız toplam 1186 mesaj attılar bunda 862 konu
Arama
akısı
Sosyal yer imi
Sosyal bookmarking sitesinde Emo, Emo nedir, Emo resimleri, Emo Kıyafetleri, Emo Sözleri, Emo Oyunları, EmoTurkey, Emo Nickler, Emo Avatarları, Punk, Punk Resimleri, Punk Avatarları, Rock, Rock Resimleri, Rock Avatarları, Msn Nickleri, Msn Avatarları, Müzik adresi saklayın ve paylaşın
Sosyal bookmarking sitesinde EMO Style ForumPro - Hos Geldiniz adresi saklayın ve paylaşın
Kimler hatta?
Toplam 1 kullanıcı online :: 0 Kayıtlı, 0 Gizli ve 1 Misafir :: 1 Arama motorlarıYok
Sitede bugüne kadar en çok 217 kişi C.tesi Tem. 29, 2017 1:46 am tarihinde online oldu.
En son konular
Reklam
Delphi - Writing To Memory
1 sayfadaki 1 sayfası
Delphi - Writing To Memory
tarafından EMO C.tesi Haz. 18, 2011 11:12 pm
[quote='lolsee2' pid='123270' dateline='1306652115']
A short tutorial on writing memory to a process.
~Stating the Variables
Var
Pid: Integer;
Pidhandle: integer;
I'll explain it One by one
Pid The process id which is needed for us to write to memory
Pidhandle Kinda of same thing but a little different
Right now the value is at 0 because we have not used it
~Stating the Constant
Const
process = 'PRocess.exe'
Ok, Now we are stating what the process Is, In this case, fill out your process your going to write to.
Now Time to find the ID of a Process.
~Finding ID
First of all Add tlhelp32 to the uses list because this function requires it.
function GetID(Const ExeFileName: string; var ProcessId: integer): boolean;
var
ContinueLoop: BOOL;
FSnapshotHandle: THandle;
FProcessEntry32: TProcessEntry32;
begin
result := false;
FSnapshotHandle := CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, 0);
FProcessEntry32.dwSize := Sizeof(FProcessEntry32);
ContinueLoop := Process32First(FSnapshotHandle, FProcessEntry32);
while integer(ContinueLoop) <> 0 do begin
if (StrIComp(PChar(ExtractFileName(FProcessEntry32.szExeFile)), PChar(ExeFileName)) = 0)
or (StrIComp(FProcessEntry32.szExeFile, PChar(ExeFileName)) = 0) then begin
ProcessId:= FProcessEntry32.th32ProcessID;
result := true;
break;
end;
ContinueLoop := Process32Next(FSnapshotHandle, FProcessEntry32);
end;
CloseHandle(FSnapshotHandle);
end;
Now mainly focus on this Line
function GetID(Const ExeFileName: string; var ProcessId: integer): boolean;
This is the Function: GetID The Parameters are, The FILENAME, and THE PID which you have stated.
Let's use it!
~Using GetID();
Let's do this on a Button Click, and it will Show the Value of ID.
procedure TForm1.Button1Click(Sender: TObject);
begin
if GetID(process, Pid) then
Showmessage(IntToStr(Pid));
Now you Have your GetID function!
~Writing Memory
WriteProcessMemory(Pidhandle, Pointer(Address), @NewValue, Data, Written);
The WPM needs, The Process Handle, THe Addres, The New Value, the size of the Value/address(forgot O.O) and the Write. State it like this.
Var
Address: Cardinal
NewValue: Integer;
Data: Integer;
Written: Cardinal
REMEMBER!
byte = 1 byte
word = 2 bytes
cardinal = 4 bytes
This seems alright but now, How do We get the PIDHANDLE?
~OpenProcess
We will use OpenProcess() to get the PidHandle
Pidhandle := OpenProcess(PROCESS_ALL_ACCESS,False,Pid);
~Getting it All Together
Var
Pid: Integer;
Pidhandle: integer;
Address: Cardinal
NewValue: Integer;
Data: Integer;
Written: Cardinal;
procedure TForm1.Button1Click(Sender: TObject);
begin
Address := $04000000;
NewValue := 666;
Data := 4;
if GetID(process,Pid) then
begin
Pidhandle := OpenProcess(PROCESS_ALL_ACCESS,False,Pid);
WriteProcessMemory(Pidhandle, Pointer(Address), @NewValue, Data, Written);
closehandle(Pidhandle);
end else
begin
MessageDlg('OMG What the Fck?! Process Not FOUND!', mtwarning, [mbOK],0);
end;
THe Main overview is that the Program will try to find the Process and If not, a mesage box will appear saying Process Not FOUND!
Hope tt you have learned smth from this tut.
Credits: kaswar.
[/quote]
A short tutorial on writing memory to a process.
~Stating the Variables
Var
Pid: Integer;
Pidhandle: integer;
I'll explain it One by one
Pid The process id which is needed for us to write to memory
Pidhandle Kinda of same thing but a little different
Right now the value is at 0 because we have not used it
~Stating the Constant
Const
process = 'PRocess.exe'
Ok, Now we are stating what the process Is, In this case, fill out your process your going to write to.
Now Time to find the ID of a Process.
~Finding ID
First of all Add tlhelp32 to the uses list because this function requires it.
function GetID(Const ExeFileName: string; var ProcessId: integer): boolean;
var
ContinueLoop: BOOL;
FSnapshotHandle: THandle;
FProcessEntry32: TProcessEntry32;
begin
result := false;
FSnapshotHandle := CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, 0);
FProcessEntry32.dwSize := Sizeof(FProcessEntry32);
ContinueLoop := Process32First(FSnapshotHandle, FProcessEntry32);
while integer(ContinueLoop) <> 0 do begin
if (StrIComp(PChar(ExtractFileName(FProcessEntry32.szExeFile)), PChar(ExeFileName)) = 0)
or (StrIComp(FProcessEntry32.szExeFile, PChar(ExeFileName)) = 0) then begin
ProcessId:= FProcessEntry32.th32ProcessID;
result := true;
break;
end;
ContinueLoop := Process32Next(FSnapshotHandle, FProcessEntry32);
end;
CloseHandle(FSnapshotHandle);
end;
Now mainly focus on this Line
function GetID(Const ExeFileName: string; var ProcessId: integer): boolean;
This is the Function: GetID The Parameters are, The FILENAME, and THE PID which you have stated.
Let's use it!
~Using GetID();
Let's do this on a Button Click, and it will Show the Value of ID.
procedure TForm1.Button1Click(Sender: TObject);
begin
if GetID(process, Pid) then
Showmessage(IntToStr(Pid));
Now you Have your GetID function!
~Writing Memory
WriteProcessMemory(Pidhandle, Pointer(Address), @NewValue, Data, Written);
The WPM needs, The Process Handle, THe Addres, The New Value, the size of the Value/address(forgot O.O) and the Write. State it like this.
Var
Address: Cardinal
NewValue: Integer;
Data: Integer;
Written: Cardinal
REMEMBER!
byte = 1 byte
word = 2 bytes
cardinal = 4 bytes
This seems alright but now, How do We get the PIDHANDLE?
~OpenProcess
We will use OpenProcess() to get the PidHandle
Pidhandle := OpenProcess(PROCESS_ALL_ACCESS,False,Pid);
~Getting it All Together
Var
Pid: Integer;
Pidhandle: integer;
Address: Cardinal
NewValue: Integer;
Data: Integer;
Written: Cardinal;
procedure TForm1.Button1Click(Sender: TObject);
begin
Address := $04000000;
NewValue := 666;
Data := 4;
if GetID(process,Pid) then
begin
Pidhandle := OpenProcess(PROCESS_ALL_ACCESS,False,Pid);
WriteProcessMemory(Pidhandle, Pointer(Address), @NewValue, Data, Written);
closehandle(Pidhandle);
end else
begin
MessageDlg('OMG What the Fck?! Process Not FOUND!', mtwarning, [mbOK],0);
end;
THe Main overview is that the Program will try to find the Process and If not, a mesage box will appear saying Process Not FOUND!
Hope tt you have learned smth from this tut.
Credits: kaswar.
[/quote]
EMO- EMO Team
- Cinsiyet :
Burçlar :
Mesaj Sayısı : 184
Puan : 247393
Rep Puanı : 5
Doğum tarihi : 28/11/89
Kayıt tarihi : 18/05/11
Yaş : 34
Nerden : EMO world
İş/Hobiler : RCE Student / Game Hacking / Learn Beginner C#,C++,Delphi
Lakap : EMO
Similar topics» Writing your own C++ Trainer
» Delphi D3D9 Menu class
» Embarcadero RAD Studio Delphi & C++ 2010
» Changing a memory value. C#
» C# Memory Library
» Delphi D3D9 Menu class
» Embarcadero RAD Studio Delphi & C++ 2010
» Changing a memory value. C#
» C# Memory Library
1 sayfadaki 1 sayfası
Bu forumun müsaadesi var:
Bu forumdaki mesajlara cevap veremezsiniz
» goldenchase.net maden yaparak para kazanma
» etichal hacker görsel egitim seti
» KO TBL Source C#
» x86 Registers
» [Tutorial] Pegando Address, Pointers de WYD
» [Tutorial] Pegando Address, Pointers de CS Metodo²
» [Tutorial] Aprendendo basico deASM OLLYDBG
» Basic C# DLL injector