mirror of
https://github.com/Artikash/Textractor.git
synced 2025-01-10 01:33:51 +08:00
make TextHook consistent with code in host
This commit is contained in:
parent
5f87dae972
commit
a0b8b78727
@ -144,21 +144,13 @@ void TextHook::Send(DWORD dwDataBase)
|
|||||||
hp.text_fun(dwDataBase, &hp, 0, &dwDataIn, &dwSplit, &dwCount);
|
hp.text_fun(dwDataBase, &hp, 0, &dwDataIn, &dwSplit, &dwCount);
|
||||||
}
|
}
|
||||||
else {
|
else {
|
||||||
if (dwDataIn == 0)
|
if (dwDataIn == 0) return;
|
||||||
return;
|
if (dwType & FIXING_SPLIT) dwSplit = FIXED_SPLIT_VALUE; // fuse all threads, and prevent floating
|
||||||
if (dwType & FIXING_SPLIT)
|
|
||||||
dwSplit = FIXED_SPLIT_VALUE; // fuse all threads, and prevent floating
|
|
||||||
else if (dwType & USING_SPLIT) {
|
else if (dwType & USING_SPLIT) {
|
||||||
dwSplit = *(DWORD *)(dwDataBase + hp.split);
|
dwSplit = *(DWORD *)(dwDataBase + hp.split);
|
||||||
if (dwType & SPLIT_INDIRECT) {
|
if (dwType & SPLIT_INDIRECT) dwSplit = *(DWORD *)(dwSplit + hp.split_index);
|
||||||
if (IthGetMemoryRange((LPVOID)(dwSplit + hp.split_index), 0, 0)) dwSplit = *(DWORD *)(dwSplit + hp.split_index);
|
|
||||||
else return;
|
|
||||||
}
|
|
||||||
}
|
|
||||||
if (dwType & DATA_INDIRECT) {
|
|
||||||
if (IthGetMemoryRange((LPVOID)(dwDataIn + hp.index), 0, 0)) dwDataIn = *(DWORD *)(dwDataIn + hp.index);
|
|
||||||
else return;
|
|
||||||
}
|
}
|
||||||
|
if (dwType & DATA_INDIRECT) dwDataIn = *(DWORD *)(dwDataIn + hp.index);
|
||||||
dwCount = GetLength(dwDataBase, dwDataIn);
|
dwCount = GetLength(dwDataBase, dwDataIn);
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -166,19 +158,15 @@ void TextHook::Send(DWORD dwDataBase)
|
|||||||
|
|
||||||
if (hp.length_offset == 1) {
|
if (hp.length_offset == 1) {
|
||||||
dwDataIn &= 0xffff;
|
dwDataIn &= 0xffff;
|
||||||
if ((dwType & BIG_ENDIAN) && (dwDataIn >> 8))
|
if ((dwType & BIG_ENDIAN) && (dwDataIn >> 8)) dwDataIn = _byteswap_ushort(dwDataIn & 0xffff);
|
||||||
dwDataIn = _byteswap_ushort(dwDataIn & 0xffff);
|
if (dwCount == 1) dwDataIn &= 0xff;
|
||||||
if (dwCount == 1)
|
|
||||||
dwDataIn &= 0xff;
|
|
||||||
*(WORD*)pbData = dwDataIn & 0xffff;
|
*(WORD*)pbData = dwDataIn & 0xffff;
|
||||||
}
|
}
|
||||||
else
|
else ::memcpy(pbData, (void*)dwDataIn, dwCount);
|
||||||
::memcpy(pbData, (void*)dwDataIn, dwCount);
|
|
||||||
|
|
||||||
if (hp.filter_fun && !hp.filter_fun(pbData, &dwCount, &hp, 0) || dwCount <= 0) return;
|
if (hp.filter_fun && !hp.filter_fun(pbData, &dwCount, &hp, 0) || dwCount <= 0) return;
|
||||||
|
|
||||||
if (dwType & (NO_CONTEXT | FIXING_SPLIT))
|
if (dwType & (NO_CONTEXT | FIXING_SPLIT)) dwRetn = 0;
|
||||||
dwRetn = 0;
|
|
||||||
|
|
||||||
TextOutput({ GetCurrentProcessId(), dwAddr, dwRetn, dwSplit }, pbData, dwCount);
|
TextOutput({ GetCurrentProcessId(), dwAddr, dwRetn, dwSplit }, pbData, dwCount);
|
||||||
}
|
}
|
||||||
@ -233,7 +221,7 @@ insert:
|
|||||||
}
|
}
|
||||||
#endif // _WIN32
|
#endif // _WIN32
|
||||||
|
|
||||||
DWORD WINAPI Reader(LPVOID hookPtr)
|
DWORD WINAPI TextHook::Reader(LPVOID hookPtr)
|
||||||
{
|
{
|
||||||
TextHook* hook = (TextHook*)hookPtr;
|
TextHook* hook = (TextHook*)hookPtr;
|
||||||
BYTE buffer[PIPE_BUFFER_SIZE] = {};
|
BYTE buffer[PIPE_BUFFER_SIZE] = {};
|
||||||
|
@ -17,21 +17,24 @@ void SetTrigger();
|
|||||||
|
|
||||||
class TextHook
|
class TextHook
|
||||||
{
|
{
|
||||||
|
public:
|
||||||
|
HookParam hp;
|
||||||
|
|
||||||
|
bool Insert(HookParam hp, DWORD set_flag);
|
||||||
|
void Clear();
|
||||||
|
|
||||||
|
private:
|
||||||
|
static DWORD WINAPI Reader(LPVOID hookPtr);
|
||||||
bool InsertHookCode();
|
bool InsertHookCode();
|
||||||
bool InsertReadCode();
|
bool InsertReadCode();
|
||||||
|
void Send(DWORD dwDatabase);
|
||||||
int GetLength(DWORD base, DWORD in); // jichi 12/25/2013: Return 0 if failed
|
int GetLength(DWORD base, DWORD in); // jichi 12/25/2013: Return 0 if failed
|
||||||
void RemoveHookCode();
|
void RemoveHookCode();
|
||||||
void RemoveReadCode();
|
void RemoveReadCode();
|
||||||
|
|
||||||
HANDLE readerThread, readerEvent;
|
HANDLE readerThread, readerEvent;
|
||||||
BYTE trampoline[120];
|
BYTE trampoline[120];
|
||||||
public:
|
|
||||||
HookParam hp;
|
|
||||||
|
|
||||||
bool Insert(HookParam hp, DWORD set_flag);
|
|
||||||
void Send(DWORD dwDataBase);
|
|
||||||
void Clear();
|
|
||||||
friend DWORD WINAPI Reader(LPVOID hookPtr);
|
|
||||||
};
|
};
|
||||||
|
|
||||||
enum { MAX_HOOK = 300, HOOK_BUFFER_SIZE = MAX_HOOK * sizeof(TextHook), HOOK_SECTION_SIZE = HOOK_BUFFER_SIZE * 2 };
|
enum { MAX_HOOK = 300, HOOK_BUFFER_SIZE = MAX_HOOK * sizeof(TextHook), HOOK_SECTION_SIZE = HOOK_BUFFER_SIZE * 2 };
|
||||||
|
Loading…
x
Reference in New Issue
Block a user