2024-01-12 15:37:22 +02:00
|
|
|
#pragma once
|
|
|
|
|
|
|
|
#define WIN32_LEAN_AND_MEAN
|
|
|
|
#include <windows.h>
|
2024-01-12 21:29:00 +02:00
|
|
|
#include <winternl.h>
|
2024-01-12 15:37:22 +02:00
|
|
|
|
|
|
|
#include <string>
|
|
|
|
|
|
|
|
namespace pe_helpers
|
|
|
|
{
|
|
|
|
|
|
|
|
typedef struct SectionHeadersResult
|
|
|
|
{
|
|
|
|
WORD count;
|
|
|
|
PIMAGE_SECTION_HEADER ptr;
|
|
|
|
} SectionHeadersResult_t;
|
|
|
|
|
|
|
|
|
2024-01-14 02:29:02 +02:00
|
|
|
PIMAGE_NT_HEADERS get_nt_header(HMODULE hModule);
|
|
|
|
|
|
|
|
PIMAGE_FILE_HEADER get_file_header(HMODULE hModule);
|
|
|
|
|
|
|
|
PIMAGE_OPTIONAL_HEADER get_optional_header(HMODULE hModule);
|
|
|
|
|
2024-01-12 15:37:22 +02:00
|
|
|
uint8_t* search_memory(uint8_t *mem, size_t size, const std::string &search_patt);
|
|
|
|
|
|
|
|
bool replace_memory(uint8_t *mem, size_t size, const std::string &replace_patt, HANDLE hProcess);
|
|
|
|
|
|
|
|
std::string get_err_string(DWORD code);
|
|
|
|
|
|
|
|
bool is_module_64(HMODULE hModule);
|
|
|
|
|
|
|
|
bool is_module_32(HMODULE hModule);
|
|
|
|
|
|
|
|
SectionHeadersResult get_section_headers(HMODULE hModule);
|
|
|
|
|
|
|
|
PIMAGE_SECTION_HEADER get_section_header_with_name(HMODULE hModule, const char* name);
|
|
|
|
|
|
|
|
DWORD loadlib_remote(HANDLE hProcess, const std::wstring &lib_fullpath, const char** err_reason = nullptr);
|
|
|
|
|
|
|
|
size_t get_pe_size(HMODULE hModule);
|
|
|
|
|
2024-04-13 17:35:10 +02:00
|
|
|
const std::string& get_current_exe_path();
|
2024-01-12 21:29:00 +02:00
|
|
|
|
2024-04-13 17:35:10 +02:00
|
|
|
const std::wstring& get_current_exe_path_w();
|
2024-01-12 21:29:00 +02:00
|
|
|
|
|
|
|
bool ends_with_i(PUNICODE_STRING target, const std::wstring &query);
|
|
|
|
|
2024-01-14 02:29:02 +02:00
|
|
|
MEMORY_BASIC_INFORMATION get_mem_page_details(const void* mem);
|
|
|
|
|
|
|
|
size_t get_current_exe_mem_size();
|
|
|
|
|
2024-01-12 15:37:22 +02:00
|
|
|
}
|