MemStream is a wrapper for MemProcFS providing a simplified C++ interface for FPGA-based DMA application development.
#include <cstdint>
#include <Process.h>
void example() {
Process notepad("notepad.exe");
uint64_t base = notepad.GetModuleBase("notepad.exe");
uint8_t data = 0;
if(!notepad.Read(base, &data, 1)) {
printf("???");
}
printf("%x", data);
}
Also see the example directory.
Building for Linux is done via a docker toolchain. Run:
make linux
TODO: windows x64 builds via windows docker toolchain...
Those marked ?
I am unsure about including.
- Build compatibility for all MemProcFS targets
- Windows AMD64
- Linux AMD64
- Linux ARM64
- Refactor CMake projects
- MemProcFS submodule dependency / autosymbol stuff
- Docker toolchains for build targets
- Github Actions for automated builds
- Complete Features
- Dump Process
- Caching features (EAT/IAT/ect. - things that do not change)
- Find Pattern
- Find Code Cave
- Improve code cave search
- Refactor "Driver" Logic
- Shellcode Injection ?
- Function Calling ?
- Inline Hooking ?
- Library Manual Mapping ?
- Thread Hijacking ?
- Kernel Module Manual Mapping ?
- Mono Dissection Utils ?
- Create Example Apps
- Basic example
- Input example
- ReClass.NET Plugin
- Performance test example
- Real-world app example (mono dumper)
- rework exceptions ?