Simple MemoryMgr Class

[CodeDemon]

I was bored, pretty much it easily allows you to manage all your addresses.

There are some things you can do to easily make this better(Get the original bytes for the addresses automatically), but hey its for the public

Credits: mmbob, nubzgetskillz

Code:

/*===============================|
|Simple MemoryMgr Class			 |
|								 |
|By CodeDemon					 |
|Credits: mmbob, nubzgetskillz	 |
|===============================*/
#include <Windows.h>

#define ON true
#define OFF false
#define ingamecheck 0x37829B4C

struct memory{
	char * name;
	bool enabled;
	int address;
	int size;
	char * original;
	char * newbytes;
};

class MemoryMgr{
	public:
		memory mem[99]; //change 99 to however many addresses you have as to not allocate too much memory

		void AddOffset(char * name, int address, char * original, char * newbytes , int size);
		void UnPatchAll();
		void PatchBytes(char * name, bool onoff);
	private:
		int adrcount;
};

void MemoryMgr::AddOffset(char * name, int address, char * original, char * newbytes, int size)
{
	mem[adrcount].address = address;
	mem[adrcount].name = name;
	mem[adrcount].size = size;
	mem[adrcount].original = original;
	mem[adrcount].newbytes = newbytes;
	mem[adrcount].enabled = false;
	adrcount++;
}

void MemoryMgr::UnPatchAll()
{
	for(int i = 0; i<(sizeof(mem)/sizeof(memory)); i++){
		memcpy((LPVOID)mem[i].address,mem[i].original,mem[i].size);
		mem[i].enabled = false;
	}
}


void MemoryMgr::PatchBytes(char * name, bool onoff)
{
	for(int i = 0; i<(sizeof(mem)/sizeof(memory)); i++){
		if(mem[i].name == name){
			if(*(int*)ingamecheck == 1){
				if(onoff == true){
					memcpy((LPVOID)mem[i].address,mem[i].newbytes,mem[i].size);
					mem[i].enabled = true;
				} else {
					memcpy((LPVOID)mem[i].address,mem[i].original,mem[i].size);
					mem[i].enabled = false;
				}
			} else {
				memcpy((LPVOID)mem[i].address,mem[i].original,mem[i].size);
			}
		}
	}
}

How to use:

Paste the code into a new header file.

Create a new instance of the class, preferably where your DLL main function is, or where your hacks are. You can also extern it if that will be easier for you.

Code:

MemoryMgr mempatch

In your DLL main, initiate the addresses, this is done, so that you dont initiate addresses more than once.

Code:

bool APIENTRY DllMain(HMODULE hMod, DWORD pReason, LPVOID lpReserved)
{
	if (pReason == DLL_PROCESS_ATTACH)
	{

		mempatch.AddOffset("NoReload", 0x374BB8F4, "\x0F\x84\xB1\x01\x00\x00", "\x90\x90\x90\x90\x90\x90", 6);
		mempatch.AddOffset("SuperBullets", 0x374B65D6, "\x0F\x94\xC0", "\x90\x90\x90", 3);
	}

	return true;

}

Use:

Code:

 mempatch.PatchBytes("HACKNAME",ON);

or

Code:

 mempatch.PatchBytes("HACKNAME",OFF);

The function automatically checks if bytes can be patched(patches only if in game), and patches them accordingly.

[Departure]

Nice work, I made something similar awhile ago but nothing to do with hacks, just similar idea of an array of patches... A lot of my coding is based around reverse engineering so it was for creating a simple loader which patches the target when loaded in a Suspended state.

[highlight=Delphi]
(* ************************************************** ***
Unit : uMultiMemPatch
Author : Departure
Url : cheesydoodle.com

Info:
An Easy way to patch your Target in memory,
Just add your VA and your array of bytes,
it will load the target in suspended mode
write the bytes to address(s) given and then
resume the thread with new Patches.

Usage:
uses
uMultiMemPatch;
Var
MyArrayOfPatches: APatchRec;
Being
AddPatch($0040107B,[$90,$90,$90],MyArrayOfPatches);
AddPatch($004010B0,[$90,$EB],MyArrayOfPatches);
WritePatches('CrackMe.exe', MyArrayOfPatches);
MyArrayOfPatches:= Nil;
end;
************************************************** *** *)
unit uMultiMemPatch;

interface

uses
Windows;

type
TPatchRec = Record
dwAddress: Dword;
baPatches: Array of Byte;
end;

type
APatchRec = Array of TPatchRec;

Procedure AddPatch(dwAddress: Dword; aPatches: Array of byte; var ArrayRecord: APatchRec);

implementation

Procedure AddPatch(dwAddress: Dword; aPatches: Array of byte; var ArrayRecord: APatchRec);
var
Patch: TPatchRec;
i: Integer;
begin
{Set the Address}
Patch.dwAddress:= dwAddress;
{Set the Length of Patches}
SetLength(Patch.baPatches, Length(aPatches));
{Add the Patches}
for i:= low(aPatches) to high(aPatches) do
Patch.baPatches[i]:= aPatches[i];

{Check if Array is already Built}
if ArrayRecord = Nil then
SetLength(ArrayRecord,1)
else
SetLength(ArrayRecord,Length(ArrayRecord) +1);
{Add out Patches to the Array}
ArrayRecord[high(ArrayRecord)]:= Patch;
end;

Function WritePatches(sFileName: String; ArrayPatches: APatchRec):Boolean;
var
{ Startup and variables used in procedure }
StartInfo : TStartupInfo;
ProcInfo : TProcessInformation;
CreateOK : Boolean;
Write: Cardinal;
i: Integer;
begin
Result:= False;
{ Intinilize }
FillChar(StartInfo,SizeOf(TStartupInfo),#0);
FillChar(ProcInfo,SizeOf(TProcessInformation),#0);
StartInfo.cb := SizeOf(TStartupInfo);

{ Create Process in a suspended state }
CreateOK := CreateProcess(PChar(sFileName),nil, nil, nil,False,CREATE_SUSPENDED,nil, nil, StartInfo, ProcInfo);

{ check to see if successful }
if CreateOK then
try
Begin
for i:= low(ArrayPatches) to high(ArrayPatches) do
{ Write MultiPatch to memory }
WriteProcessMemory(ProcInfo.hProcess,ptr(ArrayPatc hes[i].dwAddress),@arrayPatches[i].baPatches,Length(ArrayPatches[i].baPatches),Write);
{ Resume the thread }
ResumeThread(ProcInfo.hThread);
CloseHandle(ProcInfo.hProcess);
Result:= True;
end;
except
Result:= False;
end;
end;

end.
[/highlight]

Anyway great work, keep it up

[supercarz1991]

Pretty cool, if I had a working hack, id probably use this haha

[CodeDemon]

Nice work, I made something similar awhile ago but nothing to do with hacks, just similar idea of an array of patches... A lot of my coding is based around reverse engineering so it was for creating a simple loader which patches the target when loaded in a Suspended state.

[highlight=Delphi]
(* ************************************************** ***
Unit : uMultiMemPatch
Author : Departure
Url : cheesydoodle.com

Info:
An Easy way to patch your Target in memory,
Just add your VA and your array of bytes,
it will load the target in suspended mode
write the bytes to address(s) given and then
resume the thread with new Patches.

Usage:
uses
uMultiMemPatch;
Var
MyArrayOfPatches: APatchRec;
Being
AddPatch($0040107B,[$90,$90,$90],MyArrayOfPatches);
AddPatch($004010B0,[$90,$EB],MyArrayOfPatches);
WritePatches('CrackMe.exe', MyArrayOfPatches);
MyArrayOfPatches:= Nil;
end;
************************************************** *** *)
unit uMultiMemPatch;

interface

uses
Windows;

type
TPatchRec = Record
dwAddress: Dword;
baPatches: Array of Byte;
end;

type
APatchRec = Array of TPatchRec;

Procedure AddPatch(dwAddress: Dword; aPatches: Array of byte; var ArrayRecord: APatchRec);

implementation

Procedure AddPatch(dwAddress: Dword; aPatches: Array of byte; var ArrayRecord: APatchRec);
var
Patch: TPatchRec;
i: Integer;
begin
{Set the Address}
Patch.dwAddress:= dwAddress;
{Set the Length of Patches}
SetLength(Patch.baPatches, Length(aPatches));
{Add the Patches}
for i:= low(aPatches) to high(aPatches) do
Patch.baPatches[i]:= aPatches[i];

{Check if Array is already Built}
if ArrayRecord = Nil then
SetLength(ArrayRecord,1)
else
SetLength(ArrayRecord,Length(ArrayRecord) +1);
{Add out Patches to the Array}
ArrayRecord[high(ArrayRecord)]:= Patch;
end;

Function WritePatches(sFileName: String; ArrayPatches: APatchRec):Boolean;
var
{ Startup and variables used in procedure }
StartInfo : TStartupInfo;
ProcInfo : TProcessInformation;
CreateOK : Boolean;
Write: Cardinal;
i: Integer;
begin
Result:= False;
{ Intinilize }
FillChar(StartInfo,SizeOf(TStartupInfo),#0);
FillChar(ProcInfo,SizeOf(TProcessInformation),#0);
StartInfo.cb := SizeOf(TStartupInfo);

{ Create Process in a suspended state }
CreateOK := CreateProcess(PChar(sFileName),nil, nil, nil,False,CREATE_SUSPENDED,nil, nil, StartInfo, ProcInfo);

{ check to see if successful }
if CreateOK then
try
Begin
for i:= low(ArrayPatches) to high(ArrayPatches) do
{ Write MultiPatch to memory }
WriteProcessMemory(ProcInfo.hProcess,ptr(ArrayPatc hes[i].dwAddress),@arrayPatches[i].baPatches,Length(ArrayPatches[i].baPatches),Write);
{ Resume the thread }
ResumeThread(ProcInfo.hThread);
CloseHandle(ProcInfo.hProcess);
Result:= True;
end;
except
Result:= False;
end;
end;

end.
[/highlight]

Anyway great work, keep it up

Thanks! Nice Delphi btw

[supercarz1991]

Thanks! Nice Delphi btw

I know this is a lil off topic but where can I find a download link for the delphi programs to write it? (I've been using note pad to make a uce >…<)

[AtomicStone]

Useful Thanks.

[whit]

Nice classes bro

[Alessandro10]

Hahahahaha, I had seen it somewhere.

[whatup777]

Good job .

[CodeDemon]

Hahahahaha, I had seen it somewhere.

Ummm are you saying I leeched this?

[Alessandro10]

Ummm are you saying I leeched this?

No, I said I've seen something like that.

[D-Vid the DBag]

No, I said I've seen something like that.

Well, I assure you that this was ALL CD.
I was on MSN when he was talking about it.

...and I am sure glad that you've changed your avatar, cuz that's homo to be stealing other people's avatars.

[Nubzgetkillz]

Good job. This can be used in very obscure ways like to suck your dick!!!

[_Fk127_]

Well, I assure you that this was ALL CD.
I was on MSN when he was talking about it.

...and I am sure glad that you've changed your avatar, cuz that's homo to be stealing other people's avatars.

He stole UnknownCoder's this time xD

[D-Vid the DBag]

He stole UnknownCoder's this time xD

Lolz. I don't give a shit if he steals anyone else's, but not my little buddy, CodeDemon's avatar. He BETTER not steal mine tho.