HSP¥Ý¡¼¥¿¥ë
¥µ¥¤¥È¥Þ¥Ã¥× ¤ªÌ䤤¹ç¤ï¤»


HSPTV!·Ç¼¨ÈÄ


̤²ò·è ²ò·è Ää»ß ºï½üÍ×ÀÁ

2013
1116
EFGH¥Ç¥Ð¥Ã¥¬¤ÎºîÀ®¡¡ContinueDebugEvent¤Ç°ú¤Ã¤«¤«¤Ã¤Æ¤Þ¤¹7²ò·è


EFGH

¥ê¥ó¥¯

2013/11/16(Sat) 18:04:59|NO.58154

¥Ç¥Ð¥Ã¥¬¤ÎºîÀ®¤ò¤·¤Æ¤ª¤ê¤Þ¤¹¡£

ttp://codezine.jp/article/detail/426
¢¬¤³¤Á¤é¤ÎURL¤ò»²¹Í¤Ë¤·¤Ê¤¬¤éºîÀ®¤òÄ©¤ó¤Ç¤¤¤Þ¤¹¤¬¤Ê¤«¤Ê¤«¤¦¤Þ¤¯¤¤¤­¤Þ¤»¤ó¡£

µ¯Æ°¤·¤Æ¤¤¤ë¥×¥í¥»¥¹¤ò¥Ç¥Ð¥Ã¥°¤·¤¿¤¤¤Î¤ÇCreateProcess´Ø¿ô¤Ï»È¤ï¤Ê¤¯¤Æ¤â¤¤¤¤¤Î¤«¤Ê¡©¤È¹Í¤¨¤Æ¤Þ¤¹¡£

­¡DebugActiveProcess¤Ç¥¢¥¯¥Æ¥£¥Ö¤Ê¥×¥í¥»¥¹¤Ë¥¢¥¿¥Ã¥Á¤·¤Æ¡¤¥Ç¥Ð¥Ã¥°¤Ç¤­¤ë¤è¤¦¤Ë¤·¤Þ¤¹¡£

­¢ContinueDebugEvent¤Ç¥Ç¥Ð¥Ã¥°¥¤¥Ù¥ó¥È¤òÊó¹ð¤·¤¿¥¹¥ì¥Ã¥É¤ò¥Ç¥Ð¥Ã¥¬¤¬Â³¹Ô¤Ç¤­¤ë¤è¤¦¤Ë¤·¤Þ¤¹¡£


­¡¤Ï¤Ç¤­¤Þ¤·¤¿¤¬­¢¤«¤é¤¬¤è¤¯Ê¬¤«¤ê¤Þ¤»¤ó¡£

pid¤Î¼èÆÀ¤Ë¤ÏÀèÇÚÊý¤¬ºîÀ®¤·¤Æ¤¯¤À¤µ¤Ã¤¿memory.dll¤ò»ÈÍѤ·¤Æ¤ª¤ê¤Þ¤¹¡£


#uselib "KERNEL32.DLL" #func DebugActiveProcess "DebugActiveProcess" sptr #func ContinueDebugEvent "ContinueDebugEvent" sptr,sptr,sptr #func WaitForDebugEvent "WaitForDebugEvent" #uselib "memory.dll" #func GetID "GetID" str, var sdim pid GetID "calc.exe", pid pids = int("$" + pid) DebugActiveProcess pids

DebugActiveProcess¤ò»È¤Ã¤Æ¤·¤Þ¤Ã¤¿¤éÂÐ¾Ý¥×¥í¥»¥¹¤¬¸Ç¤Þ¤Ã¤Æ¤·¤Þ¤¤¤Þ¤¹¡£
¥×¥í¥»¥¹¤ò³¹Ô¤Ç¤­¤ë¤Þ¤Ç¤òÌܻؤ·¤Æ¤Þ¤¹¡£
ÀèÇÚÊý¤´¶µ¼ø¤Î¤Û¤¦¤ª´ê¤¤¤·¤Þ¤¹¡£



¤³¤Îµ­»ö¤ËÊÖ¿®¤¹¤ë


EFGH

¥ê¥ó¥¯

2013/11/16(Sat) 18:29:12|NO.58155

¤³¤Á¤é¤ÎURL¤â»²¹Í¤Ë¤Ê¤ë¤È»×¤¤¤Þ¤¹¡£¤è¤í¤·¤¯¤ª´ê¤¤¤·¤Þ¤¹

http://vanillasky-room.cocolog-nifty.com/blog/2009/05/win32-e3b8.html




shiva

¥ê¥ó¥¯

2013/11/17(Sun) 23:36:34|NO.58223

¥¢¥¿¥Ã¥Á¤·¤¿¸å¤ÏWaitForDebugEvent¤Ç¥Ç¥Ð¥Ã¥°¥¤¥Ù¥ó¥È¤ò¼õ¤±¤Æ¡¢É¬ÍפʽèÍý¤ò¤·¤¿¸å¤ËContinueDebugEvent¤ò¸Æ¤Ö¡¢¤È¤¤¤¦
¥Ç¥Ð¥Ã¥¬¡¼¥ë¡¼¥×¤ò¹Ô¤¦É¬Íפ¬¤¢¤ê¤Þ¤¹¡£

¥¤¥á¡¼¥¸¤È¤·¤Æ¤Ï¼¡¤Î¤è¤¦¤Ë¤Ê¤ê¤Þ¤¹¡£


// ɬÍפÊ#include¤ä#define¤¬¹Ô¤ï¤ì¤Æ¤¤¤ë¤È²¾Äê dim de, 24 // struct DEBUG_EVENT DebugActiveProcess pid // ¥¢¥¿¥Ã¥Á¤¹¤ë repeat WaitForDebugEvent varptr(de), INFINITE // ¥Ç¥Ð¥Ã¥°¥¤¥Ù¥ó¥È¤¬¤¯¤ë¤Þ¤ÇÂÔ¤Ä // // ¥¤¥Ù¥ó¥È¤ò½èÍý // ¤³¤Î´ÖÂÐ¾Ý¥×¥í¥»¥¹¤ÏÄä»ß¤·¤Æ¤¤¤ë // ContinueDebugEvent de.0, de.1, DBG_CONTINUE // ¥¤¥Ù¥ó¥È¤ò½èÍý¤·½ª¤¨¤¿¤³¤È¤òÅÁ¤¨¤ë // ÂÐ¾Ý¥×¥í¥»¥¹¤ÏÆ°ºî¤òºÆ³«¤¹¤ë loop



EFGH

¥ê¥ó¥¯

2013/11/18(Mon) 00:19:55|NO.58228

shiva¤µ¤ó¥½¡¼¥¹ÂçÊѤ¢¤ê¤¬¤È¤¦¤´¤¶¤¤¤Þ¤¹¡£

°ì±þ¼«Ê¬¤Ê¤ê¤Ë¥½¡¼¥¹²þÊѤµ¤»¤Æ夭¤Þ¤·¤¿¡£

¤Ç¤­¤¢¤¬¤Ã¤¿¤â¤Î¤Ê¤ó¤Ç¤¹¤¬¤ä¤Ï¤ê¤É¤³¤«¤Ç¼ºÇÔ¤·¤Æ¤ë¤è¤¦¤Ç¤¹¡£

¥Ç¥Ð¥Ã¥®¡¼¡Êcalc.exe¡Ë¤¬ºÆ³«¤µ¤ì¤Ê¤¤¤Ç¤¹¡£

Îɤ±¤ì¤Ð±ø¤¤¥½¡¼¥¹¤Ç¤¹¤¬¤´ÇÒ¸«¤ÎÄø¤è¤í¤·¤¯¤ª´ê¤¤¤·¤Þ¤¹


#uselib "kernel32.dll" #func DebugActiveProcess "DebugActiveProcess" int #func ContinueDebugEvent "ContinueDebugEvent" int,int,int #func WaitForDebugEvent "WaitForDebugEvent" int,int #uselib "memory.dll" #func GetID "GetID" str,var // ɬÍפÊ#include¤ä#define¤¬¹Ô¤ï¤ì¤Æ¤¤¤ë¤È²¾Äê #define DBG_CONTINUE $10002 #define INFINITE $FFFFFFF exec "calc.exe" wait 100 sdim pid GetID "calc.exe", pid pids = int("$" + pid) dim de, 24 // struct DEBUG_EVENT DebugActiveProcess pids // ¥¢¥¿¥Ã¥Á¤¹¤ë (¤³¤³¤ÏÀ®¸ù) repeat : await 0 WaitForDebugEvent varptr(de), INFINITE // ¥Ç¥Ð¥Ã¥°¥¤¥Ù¥ó¥È¤¬¤¯¤ë¤Þ¤ÇÂÔ¤Ä (¿ʬ¤Ç¤¹¤¬¤³¤³¤âÀ®¸ù¡©) // // ¥¤¥Ù¥ó¥È¤ò½èÍý // ¤³¤Î´ÖÂÐ¾Ý¥×¥í¥»¥¹¤ÏÄä»ß¤·¤Æ¤¤¤ë // ContinueDebugEvent de.0, de.1, DBG_CONTINUE // ¥¤¥Ù¥ó¥È¤ò½èÍý¤·½ª¤¨¤¿¤³¤È¤òÅÁ¤¨¤ë // ÂÐ¾Ý¥×¥í¥»¥¹¤ÏÆ°ºî¤òºÆ³«¤¹¤ë loop



shiva

¥ê¥ó¥¯

2013/11/18(Mon) 00:56:13|NO.58231

>EFGH¤µ¤ó
¤´¤á¤ó¤Ê¤µ¤¤¡¢£±²Õ½ê¥ß¥¹¤¬¤¢¤ê¤Þ¤·¤¿¡£

loop¤Î°ì¤Ä¾å¤Î¹Ô¤Î
> ContinueDebugEvent de.0, de.1, DBG_CONTINUE
¤ò
> ContinueDebugEvent de.1, de.2, DBG_CONTINUE
¤Ëľ¤·¤Æ¤¯¤À¤µ¤¤¡£



EFGH

¥ê¥ó¥¯

2013/11/18(Mon) 21:06:42|NO.58278

¤ª¡¢¤Ç¤­¤Þ¤·¤¿¤Í¡¼¡ª

¸«»öcalc.exe¤¬Æ°¤­¤Þ¤·¤¿¡°¡°¡ª

¤¢¤ê¤¬¤È¤¦¤´¤¶¤¤¤Þ¤¹¡ª



EFGH

¥ê¥ó¥¯

2013/11/19(Tue) 01:54:50|NO.58287

²ò·è¤·¤¿¸å¤Ë¿½¤·Ìõ¤¢¤ê¤Þ¤»¤ó¡£

¿§¡¹¥½¡¼¥¹ºî¤Ã¤Æ¤ß¤¿¤ó¤Ç¤¹¤¬

WaitForDebugEvent¤Î¥Ç¥Ð¥Ã¥°¥¤¥Ù¥ó¥È¤òÂԤäƤ¤¤ë´Ö¡¢Â¾¤ÎÆ°ºî¤¬Á´¤¯¸ú¤«¤Ê¤¯¤Ê¤ê¤Þ¤¹¤è¤Í¡©

WaitForDebugEvent¤ÇÂÔµ¡ÂÔ¤Á¢­
ContinueDebugEvent¢­¥Ç¥Ð¥Ã¥°ºÆ³«
WaitForDebu¡¦¡¦¡¦¤ÇÂÔµ¡ÂÔ¤Á

¤³¤Î¤è¤¦¤Ê´¶¤¸¤Ë¤Ê¤Ã¤ÆÂÔµ¡ÂÔ¤Á¤Î»þ¡¢Ê̤νèÍý¤¬¤Ç¤­¤Ê¤¯¤Ê¤ê¤Þ¤¹¡£

²¿¤«²þÁ±ÊýË¡¤Ê¤ó¤Æ¤¢¤ê¤Þ¤»¤ó¤«¡©



shiva

¥ê¥ó¥¯

2013/11/19(Tue) 10:57:54|NO.58289

¥Ò¥ó¥È¡§WaitForDebugEvent¤ÎÂ裲°ú¿ô

¤¢¤ë¤¤¤Ï¡¢´Æ»ë¥×¥í¥»¥¹¤ÈUI¥×¥í¥»¥¹¤òʬΥ¤¹¤ë¤Î¤â¼ê¤Ç¤¹¡£
¤½¤ÎÊý¤¬¥³¡¼¥É¤Î¸«Ä̤·¤âÎɤ¯¤Ê¤ë¤Î¤Ç¤ª´«¤á¤Ç¤¹¡£
¡ÊËÜÅö¤Ï¥¹¥ì¥Ã¥ÉʬΥ¤Ç½¼Ê¬¤Ç¤¹¤¬HSP¤À¤È¤Ç¤­¤Ê¤¤¤Î¤Ç¡Ë

¤â¤·¥×¥í¥»¥¹´ÖÄÌ¿®¤Î»ÅÊý¤¬Ê¬¤«¤é¤Ê¤±¤ì¤Ð¡¢ÊÌÅÓÄ´¤Ù¤Æ¤¯¤À¤µ¤¤¡£
¸¡º÷¤¹¤ì¤Ð¤¹¤°¸«¤Ä¤«¤ê¤Þ¤¹¡£



ONION software Copyright 1997-2023(c) All rights reserved.