зеркало из https://github.com/microsoft/Detours.git
Страница:
DetourFindRemotePayload
Страницы
DetourAllocateRegionWithinJumpBounds
DetourAttach
DetourAttachEx
DetourBinaryBywayCallback
DetourBinaryClose
DetourBinaryCommitCallback
DetourBinaryDeletePayload
DetourBinaryEditImports
DetourBinaryEnumeratePayloads
DetourBinaryFileCallback
DetourBinaryFindPayload
DetourBinaryOpen
DetourBinaryPurgePayloads
DetourBinaryResetImports
DetourBinarySetPayload
DetourBinarySymbolCallback
DetourBinaryWrite
DetourCodeFromPointer
DetourCopyPayloadToProcess
DetourCopyPayloadToProcessEx
DetourCreateProcessWithDll
DetourCreateProcessWithDllEx
DetourCreateProcessWithDlls
DetourDetach
DetourEnumerateExportCallback
DetourEnumerateExports
DetourEnumerateImports
DetourEnumerateImportsEx
DetourEnumerateModules
DetourFindFunction
DetourFindPayload
DetourFindPayloadEx
DetourFindRemotePayload
DetourFinishHelperProcess
DetourGetContainingModule
DetourGetEntryPoint
DetourGetModuleSize
DetourGetSizeOfPayloads
DetourImportFileCallback
DetourImportFuncCallback
DetourImportFuncCallbackEx
DetourIsHelperProcess
DetourRestoreAfterWith
DetourSetIgnoreTooSmall
DetourSetRetainRegions
DetourSetSystemRegionLowerBound
DetourSetSystemRegionUpperBound
DetourTransactionAbort
DetourTransactionBegin
DetourTransactionCommit
DetourTransactionCommitEx
DetourUpdateThread
FAQ
Home
OverviewHelpers
OverviewInterception
OverviewPayloads
Reference
SampleCommem
SampleCping
SampleDisas
SampleDtest
SampleDumpe
SampleDumpi
SampleDynamicAlloc
SampleEinst
SampleExcep
SampleFindFunc
SampleImpmunge
SampleMember
SamplePayload
SampleRegion
SampleSetdll
SampleSimple
SampleSlept
SampleSyelog
SampleTraceapi
SampleTracebld
SampleTracelnk
SampleTracemem
SampleTracereg
SampleTraceser
SampleTracetcp
SampleTryman
SampleWithdll
Samples
Using Detours
1
DetourFindRemotePayload
Brian Gianforcaro редактировал(а) эту страницу 2021-03-06 00:51:42 -08:00
DetourFindRemotePayload
Return the address of the specified payload within a remote process.
Definition
_Success_(return != NULL)
PVOID DetourFindRemotePayload(
_In_ HANDLE hProcess,
_In_ REFGUID rguid,
_Out_opt_ DWORD *pcbData
);
Parameters
- hProcess
- Process in which the specified payload should be searched.
- rguid
GUIDof the specified payload.- pcbData
- Variable to receive the size in bytes of the specified payload.
Return value
Pointer to the specified payload or NULL if the payload doesn't exist.
Error codes
On failure, DetourFindRemotePayload will return NULL. Extended
error code information may be retrieved by calling
GetLastError.
Remarks
Where DetourFindPayload and
DetourFindPayloadEx search for a payload in the
current process, DetourFindRemotePayload searches for a payload in
a different process. The returned value can then be read or written with
ReadProcessMemory or WriteProcessMemory.
For more information on binary editing with Detours and payloads, see Payloads and DLL Import Editing in the Detours Overview.