From 3d412a4b30a9f7c7f51ea6562e694315948bd3da Mon Sep 17 00:00:00 2001
From: boris <wzn@moneybot.cc>
Date: Wed, 28 Nov 2018 16:00:02 +1300
Subject: cleaned up

in short, the cheat and loader are now separate solutions. unused stuff was moved into the legacy solution in case anyone wants to compile it or whatever.
i can change this back if you want to. also, i configured the loader to compile in x64, and have separate build types for linux and win64
---
 legacy/loader/winapi.hpp | 64 ++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 64 insertions(+)
 create mode 100644 legacy/loader/winapi.hpp

(limited to 'legacy/loader/winapi.hpp')

diff --git a/legacy/loader/winapi.hpp b/legacy/loader/winapi.hpp
new file mode 100644
index 0000000..72fdbfe
--- /dev/null
+++ b/legacy/loader/winapi.hpp
@@ -0,0 +1,64 @@
+#pragma once
+#include <Windows.h>
+#include "util.hpp"
+
+namespace winapi
+{
+	static uintptr_t get_procaddr_ex( HANDLE process, HMODULE mod, const char* proc ) {
+		IMAGE_DOS_HEADER		dos_hdr;
+		IMAGE_NT_HEADERS		nt_hdrs;
+		IMAGE_EXPORT_DIRECTORY	export_dir;
+		uintptr_t				export_addr;
+		char					export_name[ 64 ];
+		uintptr_t*				names;
+		uintptr_t*				funcs;
+		uint16_t*				ords;
+		uintptr_t				ret{ };
+
+		ReadProcessMemory( process, mod, &dos_hdr, sizeof( dos_hdr ), 0 );
+		ReadProcessMemory( process, ( void* )( uintptr_t( mod ) + dos_hdr.e_lfanew ),
+			&nt_hdrs, sizeof( nt_hdrs ), nullptr );
+
+		export_addr = nt_hdrs.OptionalHeader.DataDirectory[ 0 ].VirtualAddress;
+		ReadProcessMemory( process, ( void* )( uintptr_t( mod ) + export_addr ),
+			&export_dir, sizeof( export_dir ), nullptr );
+
+		if( !export_dir.NumberOfFunctions )
+			return uintptr_t{ };
+		
+		funcs = ( uintptr_t* )( malloc( sizeof( uintptr_t ) * export_dir.AddressOfFunctions ) );
+		names = ( uintptr_t* )( malloc( sizeof( uintptr_t ) * export_dir.NumberOfNames ) );
+		ords  = ( uint16_t* ) ( malloc( sizeof( uint16_t ) * export_dir.NumberOfNames ) );
+
+		ReadProcessMemory( process, ( void* )( uintptr_t( mod ) + export_dir.AddressOfFunctions ),
+			funcs, sizeof( uintptr_t ) * export_dir.NumberOfFunctions, nullptr );
+		ReadProcessMemory( process, ( void* )( uintptr_t( mod ) + export_dir.AddressOfNames ),
+			names, sizeof( uintptr_t ) * export_dir.NumberOfNames, nullptr );
+		ReadProcessMemory( process, ( void* )( uintptr_t( mod ) + export_dir.AddressOfNameOrdinals ),
+			ords, sizeof( uint16_t ) * export_dir.NumberOfNames, nullptr );
+
+		auto read_str = [ &process ]( char* buf, size_t size, uintptr_t addr ) {
+			for( size_t i{ }; i < size; ++i ) {
+				char _c;
+				ReadProcessMemory( process, ( void* )( addr + i ), &_c, 1, 0 );
+				buf[ i ] = _c;
+				if( !_c ) break;
+			}
+
+			buf[ size - 1 ] = 0;
+		};
+
+		for( size_t i{ }; i < export_dir.NumberOfNames; ++i ) {
+			read_str( export_name, 64, uintptr_t( mod ) + names[ i ] );
+
+			if( !strcmp( export_name, proc ) )
+				ret = uintptr_t( mod ) + funcs[ ords[ i ] ];
+		}
+
+		::free( funcs );
+		::free( names );
+		::free( ords );
+
+		return ret;
+	}
+}
\ No newline at end of file
-- 
cgit v1.2.3