• 新浪微博:
  • 按键公众号 :
按键精灵电脑版
立即下载

软件版本:2014.06
软件大小:22.9M
更新时间:03-18

按键精灵安卓版
立即下载

软件版本:3.6.9
软件大小:46.2M
更新时间:03-02

按键精灵iOS版
立即下载

软件版本:1.7.6
软件大小:29.2M
更新时间:12-06

按键手机助手
立即下载

软件版本:3.7.6
软件大小:262M
更新时间:08-06

快捷导航

登录 后使用快捷导航
没有帐号? 注册

发新话题 回复该主题

[类人猿] [类人猿] pc按键汇编逆向思维9 ----按键X版memory汇编源码库开源... [复制链接]

1#
好了,不卖关子,按键精灵X版本是我几年前写的,写的比较任性,还要不少地方需要改进的,点赞手下留情。按键2014版本在我其他帖子也有公开。按键精灵X版本使用指针方便很多。我们期待按键精灵X版本开放,现在这个可以直接拿去学习!后期也会退出新的版本源码。 直接用支持库就可以内存和汇编了,还不用考虑其他插件就可以实现很多功能。


下面是按键X注入例子,可以memory操控游戏了:
  1. XX.BindHandlePro (ProcessId)
  2. xx.AsmClear()
  3. XX.Mov_ECX_Ptr_(&H00CE94A4)
  4. XX.Push(1)
  5. XX.Push(0)
  6. XX.Call_Ptr_(&H00CEA2DC)
  7. XX.AsmCodeCall(0)
复制代码
API函数声明:
  1. Declare Function OpenProcess Lib "kernel32" Alias "OpenProcess" (ByVal dwDesiredAccess As Long, ByVal bInheritHandle As Long, ByVal dwProcessId As Long) As Long
  2. Declare Function ReadProcessMemory Lib "kernel32" Alias "ReadProcessMemory" (ByVal hProcess As Long,ByVal lpBaseAddress As Long, ByRef lpBuffer As Long, ByVal nSize As Long, lpNumberOfBytesWritten As Long) As Long
  3. Declare Function WriteProcessMemory Lib "kernel32" (ByVal hProcess As Long, ByVal lpBaseAddress As Long, ByRef lpBuffer As Long, ByVal nSize As Long, lpNumberOfBytesWritten As Long) As Long
  4. Declare Function GetCurrentProcessId Lib "kernel32" Alias "GetCurrentProcessId" () As Long
  5. Declare Function htonl Lib "Wsock32.dll" (ByVal hostlong As Long) As Long //4字节高低位互转 //32位有符号整数 不支持无符号整数 FFFF FFFF ,这个还需要调试兼容
  6. Declare Function htons Lib "Wsock32.dll" (ByVal hostshort As Long) As Long //2字节
  7. Declare Function VirtualFreeEx Lib "kernel32" (ByVal hProcess As Long, ByVal lpAddress As long, ByVal dwSize As Long, ByVal dwFreeType As Long) As Long //
  8. Declare Function VirtualAllocEx Lib "kernel32" (ByVal hProcess As Long, lpAddress As long, ByVal dwSize As Long, ByVal flAllocationType As Long, ByVal flProtect As Long) As Long
  9. Declare Function GetLastError Lib "kernel32" Alias "GetLastError" () As Long
  10. Declare Function VirtualProtectEx Lib "kernel32 " (ByVal hProcess As Integer, ByVal lpAddress As Integer, ByVal dwSize As Integer, ByVal flNewProtect As Integer, ByRef lpflOldProtect As Integer) As Integer
  11. Declare Function LoadLibraryA Lib "kernel32.dll" Alias "LoadLibraryA"(ByVal lpLibFileName As String) As Long
  12. Declare Function FreeLibrary Lib "kernel32" Alias "FreeLibrary" (ByVal hLibModule As Long) As Long
  13. Declare Function GetModuleHandleA Lib "kernel32" Alias "GetModuleHandleA" (ByVal lpModuleName As String) As Long
  14. Declare Function GetProcAddress Lib "kernel32.dll" Alias "GetProcAddress"(ByVal 模块句柄 As Long,ByVal 进程名称 As String) As Long
  15. Declare Function GetWindowThreadProcessId Lib "user32" Alias "GetWindowThreadProcessId" (ByVal hwnd As Long, ByRef lpdwProcessId As Long) As Long
  16. Declare Function CallWindowProcA Lib "user32" Alias "CallWindowProcA" (ByVal lpPrevWndFunc As Long, ByVal hWnd As Long, ByVal Msg As long, ByVal wParam As Long, ByVal lParam As Long) As Long
  17. Declare Function GetCurrentThreadId Lib "kernel32" Alias "GetCurrentThreadId" () As Long
  18. Declare Function CreateRemoteThread Lib "kernel32" (ByVal hProcess As Long, ByVal lpThreadAttributes As long, ByVal dwStackSize As Long, ByVal lpStartAddress As Long, ByVal lpParameter As long, ByVal dwCreationFlags As Long, lpThreadId As Long) As Long
  19. Declare Function SetWindowsHookExW Lib "user32" Alias "SetWindowsHookExW" (ByVal idHook As Long, ByVal lpfn As Long, ByVal hmod As Long, ByVal dwThreadId As Long) As Long
  20. Declare Function CallNextHookEx Lib "user32" Alias "CallNextHookEx" (ByVal hHook As Long, ByVal ncode As Long,ByVal wParam As Long,byval lParam As long) As Long
  21. Declare Function VirtualAlloc Lib "kernel32" (ByVal lpAddress As Long, ByVal dwSize As Long, ByVal flAllocationType As Long, ByVal flProtect As Long) As Long
  22. Declare Function VirtualFree Lib "kernel32" (ByVal lpAddress As Long, ByVal dwSize As Long, ByVal dwFreeType As Long) As Long
  23. Declare Function WaitForSingleObject Lib "kernel32" (ByVal hHandle As Long, ByVal dwMilliseconds As Long) As Long
  24. Declare Function CreateProcessA Lib "kernel32" Alias "CreateProcessA" ( lpApplicationName As String, ByVal lpCommandLine As String, ByVal lpProcessAttributes As Long,ByVal lpThreadAttributes As Long, ByVal bInheritHandles As Long, ByVal dwCreationFlags As Long, lpEnvironment As Any, ByVal lpCurrentDriectory As String,ByVal lpStartupInfo As long, ByVal lpProcessInformation As long) As Long
  25. Declare Function ReadProcessMemoryB Lib "kernel32" Alias "ReadProcessMemory" (ByVal hProcess As Long,ByVal lpBaseAddress As Long, ByVal lpBuffer As Long, ByVal nSize As Long, lpNumberOfBytesWritten As Long) As Long
复制代码
下面1700行内存汇编源码赶紧下载保存吧!
***** 该内容需您回复才可浏览 *****

最后编辑类人猿 最后编辑于 2022-03-06 12:17:05
本主题由 超级版主 瑞祥幽冥狼 于 2022/3/7 11:42:57 执行 审核帖子 操作
类人猿逆向学院 QQ:578052137 技术Q群583990978
2#

谢谢大哥 我在你那里学到了好多

3#

学习一下

4#

啊,这,这个api看的云里雾里,还不知道咋用的

5#

按键精灵X2022

6#

学习学习

7#

看看大神的之作品

8#

fsdfasdf

9#

学习

10#

memory汇编源码

11#

看看大神的之作品

12#


13#


14#

学习了

15#

213123123

16#

学习一下

17#

1700行memory汇编源码

18#


19#

怎么用

20#

不明觉厉

发新话题 回复该主题