Get base address of process

by

If you want to get the virtual address within the other process’s address space, you can do that like so:

  1. Open the process using OpenProcess — if successful, the value returned is a handle to the process, which is just an opaque token used by the kernel to identify a kernel object. Its exact integer value (0x5c in your case) has no meaning to userspace programs, other than to distinguish it from other handles and invalid handles.
  2. Call GetProcessImageFileName to get the name of the main executable module of the process.
  3. Use EnumProcessModules to enumerate the list of all modules in the target process.
  4. For each module, call GetModuleFileNameEx to get the filename, and compare it with the executable’s filename.
  5. When you’ve found the executable’s module, call GetModuleInformation to get the raw entry point of the executable.

This will give you the virtual address, but there’s not a whole lot you can do with it since it’s not mapped into your current process’s address space.

More Related Contents:

  1. Dangling Pointers after Destructor is called
  2. Weird behavior with OOP and string pointers
  3. Is segmentation fault actual undefined behavior when we refer to a non-static data-member
  4. Are there benefits of passing by pointer over passing by reference in C++?
  5. How to get main window handle from process id?
  6. Deploying Qt 5 App on Windows
  7. How to avoid memory leaks when using a vector of pointers to dynamically allocated objects in C++?
  8. difference between a pointer and reference parameter?
  9. Qt 5.1.1: Application failed to start because platform plugin “windows” is missing
  10. Pointers in c++ after delete
  11. Start Windows Service From Application without Admin right(c++)
  12. Create a directory if it doesn’t exist
  13. Returning a pointer of a local variable C++
  14. Can I use if (pointer) instead of if (pointer != NULL)?
  15. Can I use CreateFile, but force the handle into a std::ofstream?
  16. Is storing an invalid pointer automatically undefined behavior?
  17. How to know if a pointer points to the heap or the stack?
  18. What is the meaning and usage of __stdcall?
  19. Cast pointer to member function to normal pointer
  20. A pointer to 2d array
  21. How should I use FormatMessage() properly in C++?
  22. Converting YUV into BGR or RGB in OpenCV
  23. Declaring type of pointers?
  24. Can’t get visual studio C++ include file ‘excpt.h’ to get installed
  25. how do arrays work internally in c/c++
  26. “APIENTRY _tWinMain” and “WINAPI WinMain” difference
  27. Why is a c++ reference considered safer than a pointer?
  28. How do I get at the exception information when using MiniDumpWriteDump out-of-process?
  29. Does ‘auto’ type assignments of a pointer in c++11 require ‘*’?
  30. Pass by pointer & Pass by reference [duplicate]

Leave a Comment