Win32 API 打开另一个进程
生活随笔
收集整理的這篇文章主要介紹了
Win32 API 打开另一个进程
小編覺得挺不錯的,現(xiàn)在分享給大家,幫大家做個參考.
Win32 API 打開另一個進程,這是一些黑客編程技術中的一個步驟,當然也可以用來做好事;
首先要包含Tlhelp32.h;
在OpenProcessByProcessNmae函數(shù)中通過快照枚舉進程,比較進程名獲得進程id;
printf打開是否成功的信息;
如果打開成功了,進一步可以做些事情;
代碼有2份,一份是cmd的,一份是窗口的;
出現(xiàn) ' ' differs in levels of indirection from ' ' 錯誤,是因為 原因極有可能為函數(shù)或者變量的使用在定義之前;
出現(xiàn) illegal use of this type as an expression 錯誤,新定義的變量要放到這個函數(shù)的第一行;
正確寫法:
HANDLE OpenProcessByProcessNmae(const char *name)
{
?? ?PROCESSENTRY32 pe32;
?? ?DWORD id = 0;
......
如下;
HANDLE OpenProcessByProcessNmae(const char *name)
{
......
......
?? ?PROCESSENTRY32 pe32;
?? ?DWORD id = 0;
?? ?pe32.dwSize = sizeof(PROCESSENTRY32);
......
......
將報,
? ? illegal use of this type as an expression
?
#include <Windows.h> #include <Tlhelp32.h>HANDLE OpenProcessByID(const DWORD id) {return OpenProcess(PROCESS_ALL_ACCESS,FALSE,id); }HANDLE OpenProcessByProcessNmae(const char *name) {PROCESSENTRY32 pe32;DWORD id = 0;HANDLE hSnapshot = CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS,0); if (hSnapshot == INVALID_HANDLE_VALUE){CloseHandle(hSnapshot);return INVALID_HANDLE_VALUE;}pe32.dwSize = sizeof(PROCESSENTRY32);if ( !Process32First(hSnapshot,&pe32) ){CloseHandle(hSnapshot);return INVALID_HANDLE_VALUE;}while ( 1 ){pe32.dwSize = sizeof(PROCESSENTRY32);if (Process32Next(hSnapshot,&pe32) == FALSE)break;if ( strcmp(pe32.szExeFile,name)==0 ){return OpenProcessByID(pe32.th32ProcessID);}}CloseHandle(hSnapshot);return INVALID_HANDLE_VALUE; }int main(void) {HANDLE hProcess = OpenProcessByProcessNmae("notepad.exe");if (hProcess == INVALID_HANDLE_VALUE){printf("error open process %d\n",GetLastError());return 1;}else{printf("success open process %d\n",GetLastError());} //HANDLE hThread = CreateRemoteThread(hProcess,NULL,0,(LPTHREAD_START_ROUTINE)RemoteExe,RemoteParam,0,NULL);//WaitForSingleObject(hThread,INFINITE);return 0; } /*------------------------------------------------------------by bobo , 2018-09-10------------------------------------------------------------*/#include <windows.h> #include <Tlhelp32.h>LRESULT CALLBACK WndProc (HWND, UINT, WPARAM, LPARAM) ;HANDLE OpenProcessByID(const DWORD id) {return OpenProcess(PROCESS_ALL_ACCESS,FALSE,id); }HANDLE OpenProcessByProcessNmae(const char *name) {PROCESSENTRY32 pe32;DWORD id = 0;HANDLE hSnapshot = CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS,0); if (hSnapshot == INVALID_HANDLE_VALUE){CloseHandle(hSnapshot);return INVALID_HANDLE_VALUE;}pe32.dwSize = sizeof(PROCESSENTRY32);if ( !Process32First(hSnapshot,&pe32) ){CloseHandle(hSnapshot);return INVALID_HANDLE_VALUE;}while ( 1 ){pe32.dwSize = sizeof(PROCESSENTRY32);if (Process32Next(hSnapshot,&pe32) == FALSE)break;if ( strcmp(pe32.szExeFile,name)==0 ){return OpenProcessByID(pe32.th32ProcessID);}}CloseHandle(hSnapshot);return INVALID_HANDLE_VALUE; }HANDLE hProcess;int WINAPI WinMain (HINSTANCE hInstance, HINSTANCE hPrevInstance, PSTR szCmdLine, int iCmdShow) {static TCHAR szAppName[] = TEXT ("HelloWin") ;HWND hwnd ;MSG msg ;WNDCLASS wndclass ;wndclass.style = CS_HREDRAW | CS_VREDRAW ;wndclass.lpfnWndProc = WndProc ;wndclass.cbClsExtra = 0 ;wndclass.cbWndExtra = 0 ;wndclass.hInstance = hInstance ;wndclass.hIcon = LoadIcon (NULL, IDI_APPLICATION) ;wndclass.hCursor = LoadCursor (NULL, IDC_ARROW) ;wndclass.hbrBackground = (HBRUSH) GetStockObject (WHITE_BRUSH) ;wndclass.lpszMenuName = NULL ;wndclass.lpszClassName = szAppName ;if (!RegisterClass (&wndclass)){MessageBox (NULL, TEXT ("This program requires Windows NT!"), szAppName, MB_ICONERROR) ;return 0 ;}hwnd = CreateWindow (szAppName, // window class nameTEXT ("The Hello Program"), // window captionWS_OVERLAPPEDWINDOW, // window styleCW_USEDEFAULT, // initial x positionCW_USEDEFAULT, // initial y position300, // initial x size120, // initial y sizeNULL, // parent window handleNULL, // window menu handlehInstance, // program instance handleNULL) ; // creation parametersShowWindow (hwnd, iCmdShow) ;UpdateWindow (hwnd) ;while (GetMessage (&msg, NULL, 0, 0)){TranslateMessage (&msg) ;DispatchMessage (&msg) ;}return msg.wParam ; }LRESULT CALLBACK WndProc (HWND hwnd, UINT message, WPARAM wParam, LPARAM lParam) {HDC hdc ;PAINTSTRUCT ps ;RECT rect ;switch (message){case WM_CREATE:hProcess = OpenProcessByProcessNmae("notepadddd.exe");return 0 ;case WM_PAINT:hdc = BeginPaint (hwnd, &ps) ; GetClientRect (hwnd, &rect) ;if (hProcess == INVALID_HANDLE_VALUE){DrawText (hdc, TEXT ("error open process"), -1, &rect, DT_SINGLELINE | DT_CENTER | DT_VCENTER) ;}else{DrawText (hdc, TEXT ("success open process"), -1, &rect, DT_SINGLELINE | DT_CENTER | DT_VCENTER) ;}EndPaint (hwnd, &ps) ;return 0 ;case WM_DESTROY:PostQuitMessage (0) ;return 0 ;}return DefWindowProc (hwnd, message, wParam, lParam) ; }如果給一個不存在的進程名,將輸出 error; ?
截圖如下;
總結
以上是生活随笔為你收集整理的Win32 API 打开另一个进程的全部內(nèi)容,希望文章能夠幫你解決所遇到的問題。
- 上一篇: Win32 API 和 ODBC 访问数
- 下一篇: 使用纯 Win32 API 编程实现Wi