Reputation: 304
C++ read memory address with pointer+offset
I am trying to read an address of a process which should be the number 20. I determined this address was located at the dll base offset + a number with an offset of 10. I am using
ReadProcessMemory(phandle, (void*)address, &number, sizeof(number), 0);
to read a specific address. My question is how do I correctly search for the address located at "57B86F68" + the 10 offset?
Upvotes: 1
Views: 2476
Answers (1)
Reputation: 6427
You can read the data from handle if your phandle is a process handle with PROCESS_VM_READ access granted:
ReadProcessMemory(phandle, (void*)(0x57B86F68 + 0x10), &number, sizeof(number), 0);
To get proper access rights for the process handle check your OpenProcess flags, PROCESS_VM_READ should be there.
If it still not working things are much more complex. You should translate your virtual address to physical address and after that get direct access to the memory via kernel mode.
Upvotes: 2
Related Questions
- How to read data in a specific memory address in c++
- Access memory address manually
- C++, how to access with a pointer to a specific address
- C++ memory address and offset writing / read
- How to obtain data from a memory address pointed by another pointer?
- C++ Read Memory Address / Pointer & Offset
- Offset from a memory address
- Getting contents of an address in C++
- C++ - Get value of a particular memory address
- Taking the address of a pointer