madshi.net

I found answer to my last question:
where modInfo structure holds needed info

.. and another problem is how to find out the "size" of code.

I am searching a code sequece in process memory. That sequence is located version from version at different place. Wildcards are jmp addresses in code. So my idea is read code from memory to another allocated place and do the search here. I noticed you have public IProcess.ReadMemory function so I a...

The purpose is to find a smaller byte array with wildcards in the process and get the pointer to that occurence. Notepad serves only as example.

Please advice How Properly Read Module/Process Memory e.g. Concept: aProcess := process('Notepad.exe'); aModule := aProcess.MainModule; BytesToRead:= ?? //Need to find size of Notepad in memory GetMem (ReadBuff, BytesToRead); //Allocate buf for all bytes GlobalLock ( ?? ) //How to protect readed mem...

Hi Madshi,

should be possible to implement function Window such way, where the caption parameter could be in form 'Part of Window capt *' ? With asterisk at end of string. So to be possible find window if I know only part of its name?

Thanks. R.

Hi, please, exists a simple way how to get HWND when I know the address of Window Procedure. E.g. I hooked API function, first in the stack is the return address of calling Window Procedure. But there exists more instances of Windows (and win procs) which calls hooked API function. The calling modul...

[quote="blackpaw"]Does madCodeHook work uner this? we are getting oddbal results. Using latest download (2.550) We're ok with just hooking 32 bit apps and that sort of works - Applications that are running when our hooking servcie is started are hooked, but any 32 bit apps that are started...