15,471
社区成员
发帖
与我相关
我的任务
分享我HOOK了ReadProcessMemory,但出现一些问题~
下面就是HOOK后的动作
BOOL WINAPI myReadProcessMemory(HANDLE hProcess,LPCVOID lpBaseAddress,LPVOID lpBuffer,DWORD cbRead,LPDWORD lpNumberOfBytesRead)
{
BOOL temp=cReadProcessMemory(hProcess,lpBaseAddress,lpBuffer,cbRead,lpNumberOfBytesRead);
return temp;
}
-----------------------------------
BOOL temp=cReadProcessMemory(hProcess,lpBaseAddress,lpBuffer,cbRead,lpNumberOfBytesRead);
这句就是调用的cReadProcessMemory就是ReadProcessMemory的原型调用,其实我里面什么都没做,但却会影响一些程序的这个函数的调用,比如OutLook.
我把参数传到原型中的写法应该没错误吧~
BOOL WINAPI myReadProcessMemory(HANDLE hProcess,LPCVOID lpBaseAddress,LPVOID lpBuffer,DWORD cbRead,LPDWORD lpNumberOfBytesRead)
{
BOOL temp=cReadProcessMemory(hProcess,lpBaseAddress,lpBuffer,cbRead,lpNumberOfBytesRead);
return temp;
}
-----------------------------------
BOOL temp=cReadProcessMemory(hProcess,lpBaseAddress,lpBuffer,cbRead,lpNumberOfBytesRead);
这句就是调用的cReadProcessMemory就是ReadProcessMemory的原型调用,其实我里面什么都没做,但却会影响一些程序的这个函数的调用,比如OutLook.
我把参数传到原型中的写法应该没错误吧~
...全文
请发表友善的回复…
发表回复
