Scribd Logo
Upload

Welcome to Scribd!

  • Crack App Memory Using Process Injection

    Uploaded by

    Bobai Sunday
    5 views2 pages
    This C++ code launches a target application, obtains its process information, and then attempts to crack it by modifying bytes in its memory. It first calls CreateVProcess() to launch the target app and get its process ID. It then calls TryToCrack(), passing the process info, which opens the target process, gets the base address of its main module, and in a loop writes new bytes to two addresses in an attempt to crack it.

    Original Description:

    Original Title

    C++ pacthing.txt

    Copyright

    © © All Rights Reserved

    Available Formats

    TXT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This C++ code launches a target application, obtains its process information, and then attempts to crack it by modifying bytes in its memory. It first calls CreateVProcess() to launch the target app and get its process ID. It then calls TryToCrack(), passing the process info, which opens the target process, gets the base address of its main module, and in a loop writes new bytes to two addresses in an attempt to crack it.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    5 views2 pages

    Crack App Memory Using Process Injection

    Uploaded by

    Bobai Sunday
    This C++ code launches a target application, obtains its process information, and then attempts to crack it by modifying bytes in its memory. It first calls CreateVProcess() to launch the target app and get its process ID. It then calls TryToCrack(), passing the process info, which opens the target process, gets the base address of its main module, and in a loop writes new bytes to two addresses in an attempt to crack it.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 2

    #include "stdafx.

    h"
    #include "iostream";
    #include "atlstr.h";
    #include <windows.h>
    #include <TlHelp32.h>
    #include <stdio.h>
    #include <psapi.h>
    using namespace std;

    #pragma comment(lib, "Psapi.lib")

    PROCESS_INFORMATION CreateVProcess();
    void TryToCrack(PROCESS_INFORMATION processInfo);

    //
    // 85 c0 0f 84 9e 00 00 00
    // 85 c0 0f 85 9e 00 00 00
    // First offset 34EC7, do 34EC8
    //
    // second offset 34F03
    // 74 2E
    // EB 2E

    int main()
    {
    cout << "Launching Application" << endl;
    PROCESS_INFORMATION processInfo = CreateVProcess();
    cout << "Trying to crack..." << endl;
    TryToCrack(processInfo);
    return 0;
    }

    PROCESS_INFORMATION CreateVProcess()
    {
    LPCTSTR path = L"NameOfAppHere.exe";

    // additional information
    STARTUPINFO si;
    PROCESS_INFORMATION pi;

    // set the size of the structures


    ZeroMemory(&si, sizeof(si));
    si.cb = sizeof(si);
    ZeroMemory(&pi, sizeof(pi));

    CreateProcess(
    path,
    NULL, // Command line
    NULL, // Process handle not inheritable
    NULL, // Thread handle not inheritable
    FALSE, // Set handle inheritance to FALSE
    0, // No creation flags
    NULL, // Use parent's environment block
    NULL, // Use parent's starting directory
    &si, // Pointer to STARTUPINFO structure
    &pi // Pointer to PROCESS_INFORMATION structure (removed
    extra parentheses)
    );
    return pi;
    }

    void TryToCrack(PROCESS_INFORMATION processInfo)


    {
    Sleep(500);

    HANDLE targetProcess = OpenProcess(STANDARD_RIGHTS_WRITE, 0,


    processInfo.dwProcessId);
    void* hSnap = CreateToolhelp32Snapshot(TH32CS_SNAPMODULE,
    processInfo.dwProcessId);
    MODULEENTRY32 mod32;
    mod32.dwSize = sizeof(MODULEENTRY32);
    Module32Next(hSnap, &mod32);

    DWORD modHandle = (DWORD)mod32.modBaseAddr;

    unsigned char mem1 = 0x85;


    unsigned char mem2 = 0x75;

    for (int i = 0; i < 100000; i++)


    {
    WriteProcessMemory(processInfo.hProcess, (LPVOID)(modHandle +
    0x034EC8), &mem1, 1, NULL);
    WriteProcessMemory(processInfo.hProcess, (LPVOID)(modHandle +
    0x034F02), &mem2, 1, NULL);
    }
    }

    You might also like