OpenProcess/ReadProcessMemory/WriteProcessMemory/CloseHandle等效项 [英] OpenProcess/ReadProcessMemory/WriteProcessMemory/CloseHandle equivalent
本文介绍了OpenProcess/ReadProcessMemory/WriteProcessMemory/CloseHandle等效项的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!
问题描述
这些Windows函数的等效api是什么?如果您不熟悉Windows函数,则它们所要做的只是打开一个进程,访问(读取和写入)其内存并关闭其句柄.
What would be the equivalent api to these Windows functions? In case you are not familiar with the windows functions, all they do is open a process, access(read and write) its memory and close its handle.
这也可以仅通过syscall来完成吗?
Can this be done with syscalls only as well?
推荐答案
您在寻找 ptrace .尽管名称如此,它也将针对Linux以及其他系统上的各个线程.如果该博客文章无济于事,可以在Google上找到更多信息.
You're looking for ptrace. Despite the name, it will also target individual threads on Linux and possibly other systems. More info can be found with Google if that blog post doesn't help.
这篇关于OpenProcess/ReadProcessMemory/WriteProcessMemory/CloseHandle等效项的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
查看全文
