WMemoryHandler/WMemory.cs at master · fellypsantos/WMemoryHandler · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
using System;
using System.Diagnostics;
using System.Linq;
using System.Runtime.InteropServices;

namespace MemoryHandler
{
    class WMemory
    {
        int PROCESS_VM_OPERATION = 0x00000008;
        int PROCESS_VM_READ = 0x00000010;
        int PROCESS_VM_WRITE = 0x00000020;

        [DllImport("kernel32.dll", SetLastError = true)]
        public static extern IntPtr OpenProcess(
            int processAccess,
            bool bInheritHandle,
            int processId
        );

        [DllImport("kernel32.dll", SetLastError = true)]
        static extern bool ReadProcessMemory(
            IntPtr hProcess,
            IntPtr lpBaseAddress,
            [Out] byte[] lpBuffer,
            int nSize,
            out IntPtr lpNumberOfBytesRead
        );

        [DllImport("kernel32.dll", SetLastError = true)]
        public static extern bool WriteProcessMemory(
          IntPtr hProcess,
          IntPtr lpBaseAddress,
          byte[] lpBuffer,
          Int32 nSize,
          out int lpNumberOfBytesWritten
        );

        private IntPtr baseAddress = IntPtr.Zero;
        private IntPtr processHandler = IntPtr.Zero;
        private int processId = 0;

        public WMemory(string processName)
        {
            Process process = Process.GetProcessesByName(processName).FirstOrDefault();

            if (process == null)
                throw new Exception("Process " + processName + " not found.", null);

            processId = process.Id;
            baseAddress = process.MainModule.BaseAddress;
            processHandler = handleOpen();
        }

        private IntPtr handleOpen()
        {
            int openingMode = PROCESS_VM_OPERATION | PROCESS_VM_READ | PROCESS_VM_WRITE;
            return OpenProcess(openingMode, false, processId);
        }

        public bool WriteByteArray(int pOffset, byte[] bytes)
        {
            int bytesWritten = 0;
            IntPtr finalAddress = baseAddress + pOffset;
            WriteProcessMemory(processHandler, finalAddress, bytes, bytes.Length, out bytesWritten);
            return bytesWritten > 0;
        }

        public Int32 ReadInt32(IntPtr address)
        {
            IntPtr bytesRead;
            byte[] buffer = new byte[4];
            ReadProcessMemory(processHandler, address, buffer, buffer.Length, out bytesRead);

            return BitConverter.ToInt32(buffer, 0);
        }

        public float ReadFloat(IntPtr address)
        {
            IntPtr bytesRead;
            byte[] buffer = new byte[4];
            ReadProcessMemory(processHandler, address, buffer, buffer.Length, out bytesRead);

            return BitConverter.ToSingle(buffer, 0);
        }

        public bool WriteFloat(IntPtr address, float value)
        {
            byte[] floatBytes = BitConverter.GetBytes(value);
            int bytesWritten = 0;

            WriteProcessMemory(processHandler, address, floatBytes, floatBytes.Length, out bytesWritten);
            return bytesWritten > 0;
        }

        public long getFinalAddressFromOffset(int startAddress, int[] offsets)
        {
            long address = (baseAddress + startAddress).ToInt32();

            foreach (int offset in offsets)
            {
                address = ReadInt32((IntPtr)address) + offset;
            }

            return address;
        }
    }
}