MemoryEdits, RocketPal.Memory C# (CSharp) Code-Beispiele

Beispiel #1

0

Datei anzeigen

Datei: MemoryEdits.cs Projekt: n8bits/RocketPal

        public static byte[] ReadMemory(int address, long bytesToRead)
        {
            Process process   = Process.GetProcessesByName("rocketleague")[0];
            IntPtr  hProcess1 = MemoryEdits.OpenProcess(16, false, process.Id);

            byte[] numArray      = new byte[bytesToRead];
            int    hProcess2     = (int)hProcess1;
            int    lpBaseAddress = address;

            byte[] lpBuffer = numArray;
            int    length   = lpBuffer.Length;
            // ISSUE: explicit reference operation
            // ISSUE: variable of a reference type
            int lpNumberOfBytesRead = 0;

            MemoryEdits.ReadProcessMemory(hProcess2, address, lpBuffer, length, ref lpNumberOfBytesRead);
            MemoryEdits.CloseHandle(hProcess1);

            //var remainingBytes = bytesToRead - lpNumberOfBytesRead;
            //if (remainingBytes > 0)
            //{
            //  numArray Array  ReadMemory(lpNumberOfBytesRead, remainingBytes);
            //}

            return(lpBuffer);
        }

Beispiel #2

0

Datei anzeigen

        public static List <int> FindByteArrayInMemory(byte[] bytes)
        {
            List <int> addresses = new List <int>();
            var        regions   = MemoryEdits.DoMemoryThing();

            var smallRegions = regions.ToList();

            smallRegions.Sort(delegate(KeyValuePair <int, int> x, KeyValuePair <int, int> y)
            {
                return(x.Key > y.Key ? -1 : 1);
            });
            Process process   = Process.GetProcessesByName("rocketleague")[0];
            IntPtr  hProcess1 = MemoryEdits.OpenProcess(16, false, process.Id);


            var totalBytes = 0;

            foreach (var keyValuePair in smallRegions)
            {
                totalBytes += keyValuePair.Value;
            }

            for (int j = 0; j < smallRegions.Count; j++)
            {
                if (j == smallRegions.Count - 1)
                {
                    var x = 2;
                }
                var region      = smallRegions[j];
                var baseAddress = region.Key;
                var size        = region.Value;

                if (baseAddress < 0x3FA61E6D && baseAddress + size > 0x3FA61E6D)
                {
                    var x = 3;
                }
                else
                {
                    continue;
                }

                var buffer = MemoryEdits.ReadMemory(hProcess1, region.Key, region.Value);

                for (int i = 0; i < buffer.Length; i += 4)
                {
                    var matches = PatternAt(buffer, new byte[] { 0, 0, 0 });

                    if (matches.Any())
                    {
                        addresses.Add(matches.First());
                    }
                }
            }

            MemoryEdits.CloseHandle(hProcess1);

            return(addresses);
        }

Beispiel #3

0

Datei anzeigen

Datei: MemoryChunk.cs Projekt: n8bits/RocketPal

        public MemoryChunk(int baseAddress, int chunkSize, bool readForward)
        {
            this.BaseAddress = baseAddress;
            this.width       = chunkSize / 2;

            Values = new float[chunkSize];

            var bytes = MemoryEdits.ReadMemory(BaseAddress, (chunkSize * 4));

            for (int i = 0; i < bytes.Length; i += 4)
            {
                Values[i / 4] = BitConverter.ToSingle(bytes, i);
            }
        }

Beispiel #4

0

Datei anzeigen

Datei: MemoryChunk.cs Projekt: n8bits/RocketPal

        public MemoryChunk(int baseAddress, int width)
        {
            this.BaseAddress = baseAddress;
            this.width       = width;

            Values = new float[(width * 2) + 1];

            var bytes = MemoryEdits.ReadMemory(BaseAddress - (width * 4), (width * 4 * 2) + 4);

            for (int i = 0; i < bytes.Length; i += 4)
            {
                Values[i / 4] = BitConverter.ToSingle(bytes, i);
            }
        }

Beispiel #5

0

Datei anzeigen

Datei: MemoryEdits.cs Projekt: n8bits/RocketPal

        public static byte[] ReadMemory(IntPtr processHandle, int address, long bytesToRead)
        {
            byte[] numArray      = new byte[bytesToRead];
            int    hProcess2     = (int)processHandle;
            int    lpBaseAddress = address;

            byte[] lpBuffer = numArray;
            int    length   = lpBuffer.Length;

            int lpNumberOfBytesRead = 0;

            MemoryEdits.ReadProcessMemory(hProcess2, address, lpBuffer, length, ref lpNumberOfBytesRead);

            return(lpBuffer);
        }

Beispiel #6

0

Datei anzeigen

Datei: MemoryChunk.cs Projekt: n8bits/RocketPal

        public MemoryChunk(int keyAddress, int negativeExtent, int postitiveExtend)
        {
            this.BaseAddress = keyAddress;

            int totalSize = (negativeExtent + postitiveExtend + 1) * 4;

            this.Values = new float[totalSize / 4];

            int start = keyAddress - (negativeExtent * 4);

            var bytes = MemoryEdits.ReadMemory(start, totalSize);

            for (int i = 0; i < bytes.Length; i += 4)
            {
                Values[i / 4] = BitConverter.ToSingle(bytes, i);
            }
        }

Beispiel #7

0

Datei anzeigen

Datei: MemoryEdits.cs Projekt: n8bits/RocketPal

        //public static IntPtr allocMemory()
        //{
        //    IntPtr hProcess = MemoryEdits.OpenProcess(2035711, false, MemoryEdits.process.Id);
        //    UIntPtr num1 = new UIntPtr(1024U);
        //    IntPtr lpAddress = new IntPtr(0);
        //    IntPtr num2 = (IntPtr)num1;
        //    int num3 = 4096;
        //    int num4 = 64;
        //    return MemoryEdits.VirtualAllocEx(hProcess, lpAddress, (UIntPtr)num2, (AllocationType)num3, (MemoryProtection)num4);
        //}

        //public static void writeMem(int address, byte[] buffer)
        //{
        //    IntPtr hProcess1 = MemoryEdits.OpenProcess(2035711, false, MemoryEdits.process.Id);
        //    int num = 0;
        //    int hProcess2 = (int)hProcess1;
        //    int lpBaseAddress = address;
        //    byte[] lpBuffer = buffer;
        //    int Length = lpBuffer.Length;
        //    // ISSUE: explicit reference operation
        //    // ISSUE: variable of a reference type
        //    int&lpNumberOfBytesWritten = @num;
        //    MemoryEdits.WriteProcessMemory(hProcess2, lpBaseAddress, lpBuffer, Length, lpNumberOfBytesWritten);
        //    MemoryEdits.CloseHandle(hProcess1);
        //}

        public static byte[] OffsetReadMem(int address, int bytesToRead)
        {
            Process process   = Process.GetProcessesByName("rocketleague")[0];
            IntPtr  hProcess1 = MemoryEdits.OpenProcess(16, false, process.Id);

            byte[] numArray      = new byte[bytesToRead];
            int    hProcess2     = (int)hProcess1;
            int    lpBaseAddress = address;

            byte[] lpBuffer = numArray;
            int    length   = lpBuffer.Length;
            // ISSUE: explicit reference operation
            // ISSUE: variable of a reference type
            int lpNumberOfBytesRead = 0;

            MemoryEdits.ReadProcessMemory(hProcess2, (int)process.MainModule.BaseAddress + lpBaseAddress, lpBuffer, length, ref lpNumberOfBytesRead);
            MemoryEdits.CloseHandle(hProcess1);
            return(numArray);
        }

Beispiel #8

0

Datei anzeigen

        public static IList <MemoryChunk> FindMemoryChunks(float value, float tolerance, int count)
        {
            List <MemoryChunk> chunks = new List <MemoryChunk>();
            int blockSize             = 1048576 * 16;

            Process process   = Process.GetProcessesByName("rocketleague")[0];
            IntPtr  hProcess1 = MemoryEdits.OpenProcess(16, false, process.Id);

            var currentBlock = (int)process.MainModule.BaseAddress;
            var totalBytes   = process.PeakWorkingSet64 * 16;

            var totalBytesRead = 0;

            //while (totalBytesRead < totalBytes)
            while (chunks.Count() < count)
            {
                var bytesToRead = (totalBytes - totalBytesRead < blockSize) ? totalBytes - totalBytesRead : blockSize;
                int lpBytesRead = 0;

                var buffer = MemoryEdits.ReadMemory(currentBlock, bytesToRead, ref lpBytesRead);

                for (int i = 0; i < buffer.Length; i += 4)
                {
                    var thisFloat = BitConverter.ToSingle(buffer, i);

                    if (Math.Abs(thisFloat - value) < tolerance)
                    {
                        chunks.Add(new MemoryChunk(currentBlock + i, 10));
                    }
                }

                currentBlock   += blockSize;
                totalBytesRead += (int)bytesToRead;

                if (totalBytesRead >= totalBytes)
                {
                    currentBlock   = (int)process.MainModule.BaseAddress;
                    totalBytesRead = 0;
                }
            }

            return(chunks);
        }

Beispiel #9

0

Datei anzeigen

Datei: MemoryEdits.cs Projekt: n8bits/RocketPal

        public static int FindFloatInMemory(float value, int offset, float tolerance)
        {
            int blockSize = 1048576;

            Process process   = Process.GetProcessesByName("rocketleague")[0];
            IntPtr  hProcess1 = MemoryEdits.OpenProcess(16, false, process.Id);

            var currentBlock = (int)process.MainModule.BaseAddress + offset;
            var totalBytes   = process.PeakWorkingSet64;

            var totalBytesRead = 0;

            //while (totalBytesRead < totalBytes)
            while (true)
            {
                var bytesToRead = (totalBytes - totalBytesRead < blockSize) ? totalBytes - totalBytesRead : blockSize;
                int lpBytesRead = 0;

                var buffer = ReadMemory(currentBlock, bytesToRead, ref lpBytesRead);

                for (int i = 0; i < buffer.Length; i += 4)
                {
                    var thisFloat = BitConverter.ToSingle(buffer, i);

                    if (Math.Abs(thisFloat - value) < tolerance)
                    {
                        return(currentBlock + i);
                    }
                }

                currentBlock   += blockSize;
                totalBytesRead += (int)bytesToRead;

                if (totalBytesRead >= process.PeakWorkingSet64 * 16)
                {
                    currentBlock   = (int)process.PeakWorkingSet64 * 1024;
                    totalBytesRead = 0;
                }
            }

            return(-1);
        }

Beispiel #10

0

Datei anzeigen

        public static List <int> FindByteSignatureInMemory(ByteMemorySignature signature)
        {
            List <int> addresses = new List <int>();
            var        regions   = MemoryEdits.DoMemoryThing();

            regions.Reverse();

            Process process   = Process.GetProcessesByName("rocketleague")[0];
            IntPtr  hProcess1 = MemoryEdits.OpenProcess(16, false, process.Id);

            foreach (var region in regions)
            {
                var buffer      = MemoryEdits.ReadMemory(hProcess1, region.Key, region.Value);
                var baseAddress = region.Key;
                var size        = region.Value;

                if (baseAddress < 0x183D94B0 && baseAddress + size > 0x183D94B0)
                {
                    Console.Write("SADFSDf");
                }
                else
                {
                    //continue;
                }

                var matches = PatternAt(buffer, signature.bytes);

                if (matches.Any())
                {
                    addresses.Add(matches.First());
                }
            }

            if (addresses.Any() != true)
            {
                return(FindByteSignatureInMemory(signature));
            }

            MemoryEdits.CloseHandle(hProcess1);
            return(addresses);
        }

Beispiel #11

0

Datei anzeigen

Datei: MemoryEdits.cs Projekt: n8bits/RocketPal

 public static float ReadFloat(int address)
 {
     return(BitConverter.ToSingle(MemoryEdits.ReadMemory(address, 4), 0));
 }

Beispiel #12

0

Datei anzeigen

        public static List <int> FindSignatureInMemory(MemorySignature signature, bool findAll = false, List <int> ignoredAddresses = null, MemoryScanInfoPanel panel = null)
        {
            List <int> addresses = new List <int>();
            var        regions   = MemoryEdits.DoMemoryThing();

            var smallRegions = regions.Where(x => x.Value == 65536).ToList();

            smallRegions.Reverse();
            smallRegions.Sort(delegate(KeyValuePair <int, int> x, KeyValuePair <int, int> y)
            {
                return(x.Key > y.Key ? -1 : 1);
            });

            Process process   = Process.GetProcessesByName("rocketleague")[0];
            IntPtr  hProcess1 = MemoryEdits.OpenProcess(16, false, process.Id);


            var totalBytes = 0;

            foreach (var keyValuePair in smallRegions)
            {
                totalBytes += keyValuePair.Value;
            }

            for (int j = 0; j < smallRegions.Count; j++)
            {
                if (panel != null)
                {
                    panel.SetCurrentBlock(j, smallRegions.Count());
                }

                if (j == smallRegions.Count - 1)
                {
                    var x = 2;
                }
                var region      = smallRegions[j];
                var baseAddress = region.Key;
                var size        = region.Value;

                if (baseAddress < 0x3FA61E6D && baseAddress + size > 0x3FA61E6D)
                {
                    //var index = regions.ToList().IndexOf(region);
                    //var z = regions.Where(x => x.Value != size).Select(x => x.Value).ToList();
                    //string s = "";
                    //var buffer1 = MemoryEdits.ReadMemory(region.Key, region.Value);
                    //foreach (var b in buffer1)
                    //{
                    //    s += b;
                    //    if (b < 10)
                    //    {
                    //        s += " ";
                    //    }
                    //    if (b < 100)
                    //    {
                    //        s += " ";
                    //    }
                    //    s += " ";
                    var x = 3;
                    //}
                    //Clipboard.SetText(s);
                }
                else
                {
                    // continue;
                }

                var buffer = MemoryEdits.ReadMemory(hProcess1, region.Key, region.Value);
                //continue;
                for (int i = 0; i < buffer.Length; i += 4)
                {
                    var thisFloat = BitConverter.ToSingle(buffer, i);

                    if (signature.SearchKey.Contains(thisFloat))
                    {
                        if (signature.MatchAtKeyAddress(baseAddress + i))
                        {
                            if (ignoredAddresses == null || !ignoredAddresses.Contains(baseAddress + i))
                            {
                                addresses.Add((baseAddress + i) - (signature.SearchKeyIndex * 4));
                            }
                        }
                    }
                    if (addresses.Count() >= 1 || (addresses.Count >= 1 && signature.Length < 20))
                    {
                        if (!findAll)
                        {
                            return(addresses);
                        }
                    }
                }
            }

            MemoryEdits.CloseHandle(hProcess1);

            return(addresses);
        }

C# (CSharp) RocketPal.Memory MemoryEdits Beispiele