Quote:
|
Originally Posted by alambik
I'm interesting in the way UOGateway is achieving client patch.
It seems it loads the client.exe file in memory, then patch the loaded executable in memory, and run it.
How to achieve such executable load/patch/launch operation at runtime (any programming language example) ?
That seems very interesting...
|
Slightly different ... launch --> freeze --> search and replace memory --> resume ...
Standard WinAPI calls like CreateProcess, OpenProcess, WriteProcessMemory, ReadProcessMemory. Can therefore be done in nearly every (major) programming language.