Struct Process

pub struct Process { /* private fields */ }

Represents a system process, posses a PID, name and an open HANDLE

Implementations

impl Process

pub fn find(name: &str) -> WinResult<Self>

Find a Process from it’s executable’s name [Reference(s)]: https://docs.microsoft.com/en-us/windows/win32/api/tlhelp32/nf-tlhelp32-process32firstw https://docs.microsoft.com/en-us/windows/win32/api/tlhelp32/nf-tlhelp32-process32nextw https://docs.microsoft.com/en-us/windows/win32/api/tlhelp32/ns-tlhelp32-processentry32w

pub fn find_module(&self, name: &str) -> WinResult<Module>

Find a process’s module (dll) by it’s name [Reference(s)]: https://docs.microsoft.com/en-us/windows/win32/api/tlhelp32/nf-tlhelp32-module32firstw https://docs.microsoft.com/en-us/windows/win32/api/tlhelp32/nf-tlhelp32-module32nextw https://docs.microsoft.com/en-us/windows/win32/api/tlhelp32/ns-tlhelp32-moduleentry32w

pub fn write_mem<T>(&self, buffer: &T, address: DWORD) -> WinResult<()>

Write to a process’s memory, not relative to module offset [Reference]: https://docs.microsoft.com/en-us/windows/win32/api/memoryapi/nf-memoryapi-writeprocessmemory

pub fn write_mem_relative<T>( &self, buffer: &T, module_name: &str, address: DWORD, ) -> WinResult<()>

Write to a process’s memory relative to the offset of a module

pub fn read_mem<T>(&self, address: DWORD) -> WinResult<T>

Read a process’s memory, not relative to module offset [Reference]: https://docs.microsoft.com/en-us/windows/win32/api/memoryapi/nf-memoryapi-readprocessmemory

pub fn read_mem_relative<T>( &self, module_name: &str, address: DWORD, ) -> WinResult<T>

Read a process’s memory address relative to the offset of a module

pub fn name(&self) -> &str

pub fn pid(&self) -> DWORD

pub fn handle(&self) -> HANDLE

Trait Implementations

impl Drop for Process

Close Process HANDLE when Process goes out of scope or the program exits/panics

fn drop(&mut self)

Executes the destructor for this type.