please wait
Help with Reading Memory?!
Apr 23, 2016 at 12:50am
So I'm not very good with C++ yet as I am still learning the basics but I thought I would try to read process memory. For some reason I keep getting the following error messages:
Error 1 error LNK2019: unresolved external symbol "unsigned long __cdecl FindProcessId(class std::basic_string<wchar_t,struct std::char_traits<wchar_t>,class std::allocator<wchar_t> > const &)" (?FindProcessId@@YAKABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z) referenced in function _main C:\Users\ThisGuy\Documents\Visual Studio 2013\Projects\ExploitConsole\ExploitConsole\ExploitConsole.obj ExploitConsole
Error 2 error LNK1120: 1 unresolved externals C:\Users\ThisGuy\Documents\Visual Studio 2013\Projects\ExploitConsole\Debug\ExploitConsole.exe 1 1 ExploitConsole
Here is my code:
Oh and btw ignore the extra headers and stuff. Idk why I left them :D
Edit: I know there is a lot of errors :(
Error 1 error LNK2019: unresolved external symbol "unsigned long __cdecl FindProcessId(class std::basic_string<wchar_t,struct std::char_traits<wchar_t>,class std::allocator<wchar_t> > const &)" (?FindProcessId@@YAKABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z) referenced in function _main C:\Users\ThisGuy\Documents\Visual Studio 2013\Projects\ExploitConsole\ExploitConsole\ExploitConsole.obj ExploitConsole
Error 2 error LNK1120: 1 unresolved externals C:\Users\ThisGuy\Documents\Visual Studio 2013\Projects\ExploitConsole\Debug\ExploitConsole.exe 1 1 ExploitConsole
Here is my code:
|
|
Oh and btw ignore the extra headers and stuff. Idk why I left them :D
Edit: I know there is a lot of errors :(
Last edited on Apr 23, 2016 at 12:59am
Apr 23, 2016 at 1:21am
Where's your definition of FindProcessId?
As you can see the last parameter is a pointer to
https://msdn.microsoft.com/en-us/library/windows/desktop/ms680553
https://msdn.microsoft.com/en-au/library/windows/desktop/aa383751(v=vs.85).aspx
|
|
|
|
As you can see the last parameter is a pointer to
SIZE_T, which is a typedef for a 64 bit int in x64 and an unsigned long in x86.https://msdn.microsoft.com/en-us/library/windows/desktop/ms680553
https://msdn.microsoft.com/en-au/library/windows/desktop/aa383751(v=vs.85).aspx
Last edited on Apr 23, 2016 at 1:30am
Apr 23, 2016 at 1:31am
tbh I am so confused. If it helps here is the video I tried to use: https://www.youtube.com/watch?v=Vtlc-WP7iDw
Apr 23, 2016 at 1:46am
Well all of this is very confusing. I mean I know I definitely should not be attempting this at such an early stage but it's necessary for my end goal :D. I almost need an eli5 for your explanation. I'm just a dummy :D
Apr 23, 2016 at 1:54am |
|
This is the function definition for ReadProcessMemory.
SIZE_T *lpNumberOfBytesRead
lpNumberOfBytesRead [out] A pointer to a variable that receives the number of bytes transferred into the specified buffer. If lpNumberOfBytesRead is NULL, the parameter is ignored. |
If you don't care about how many bytes are read, just pass in a
nullptr, because we're using C++, while the Windows API was coded in C, so they don't have nullptr. Instead they have NULL, which is defined as 0; essentially a nullptr. |
|
You passed in
false, which is a bool. Coincidentally, when you cast false to an int, it turns out to be 0. But passing falseobscures the logic of your code.tldr;
|
|
Last edited on Apr 23, 2016 at 1:56am
Apr 23, 2016 at 2:02am
Thank you so much :D. I'm truly sorry if this was frustrating for you to write out for me to understand. I really appreciate it. Have a great evening. P.S Your explanation makes a lot of sense :D
Edit: It still does not work :(
Edit: It still does not work :(
Last edited on Apr 23, 2016 at 2:04am
Apr 23, 2016 at 2:39am
What does your FindProcessId function look like?
What does it do?
What does it do?
Apr 23, 2016 at 3:36am |
|
Topic archived. No new replies allowed.