Jump to content
Tuts 4 You

Open Process And Search

ahmadmansoor

By ahmadmansoor
in Programming and Coding

Recommended Posts

ahmadmansoor

ahmadmansoor

Posted
Posted (edited)

Can I ask If someone have some code in VB6 which do this :

open process and search for code in text section or ( from certain place to anthor)

and find like this code:

Nop

jmp XXXXXXX

and change it to

jmp dword ptr DS[XXXXX]

Edited by ahmadmansoor
Link to comment
ahmadmansoor

ahmadmansoor

Posted
  • Author
Posted (edited)

Many thanks for u Mr.Atomos for ur Fast replay ...... i will try it and tell u if I have success .....

but did ur code search for all code and repalce it all what i give him ....

I need it for make some patch in Themida ..IAT ..............

I hope u get the Idea :happy:

Edited by ahmadmansoor
Link to comment
atom0s

atom0s

Posted
Posted
Many thanks for u Mr.Atomos for ur Fast replay ...... i will try it and tell u if I have success .....

but did ur code search for all code and repalce it all what i give him ....

I need it for make some patch in Themida ..IAT ..............

I hope u get the Idea :happy:

It scans for bytes in a running process and returns the address of where the pattern starts. It can be coded to scan for bytes with a mask with some small changes, but do you need to scan in a file or running process?

I can write you some code to do it if needed. :)

Link to comment
ahmadmansoor

ahmadmansoor

Posted
  • Author
Posted
Many thanks for u Mr.Atomos for ur Fast replay ...... i will try it and tell u if I have success .....

but did ur code search for all code and repalce it all what i give him ....

I need it for make some patch in Themida ..IAT ..............

I hope u get the Idea :happy:

It scans for bytes in a running process and returns the address of where the pattern starts. It can be coded to scan for bytes with a mask with some small changes, but do you need to scan in a file or running process?

I can write you some code to do it if needed. :)

Many Thanks my friend ....yes i need that if u like i will send my Yahoo ID to u and discouss it ....... I have write a Good tut in unpack themida 1.97

but need to make a tools to fix the IAT very Quick ...because fix it by hand take some time

Link to comment
atom0s

atom0s

Posted
Posted
Many thanks for u Mr.Atomos for ur Fast replay ...... i will try it and tell u if I have success .....

but did ur code search for all code and repalce it all what i give him ....

I need it for make some patch in Themida ..IAT ..............

I hope u get the Idea :happy:

It scans for bytes in a running process and returns the address of where the pattern starts. It can be coded to scan for bytes with a mask with some small changes, but do you need to scan in a file or running process?

I can write you some code to do it if needed. :)

Many Thanks my friend ....yes i need that if u like i will send my Yahoo ID to u and discouss it ....... I have write a Good tut in unpack themida 1.97

but need to make a tools to fix the IAT very Quick ...because fix it by hand take some time

Sure, send me a PM with your Yahoo Id :) I'll be glad to help the best I can.

Link to comment
ahmadmansoor

ahmadmansoor

Posted
  • Author
Posted (edited)

My friend I have send it ...... I am online if u like ....just to insert ur name

Edited by ahmadmansoor
Link to comment

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Go to topic listing
×
×
  • Create New...