Changes in trainer interface, bug fixes & helper scripts

author: Orfeas <38209077+0xfea5@users.noreply.github.com> 2024-04-21 16:27:55 +0300
committer: Orfeas <38209077+0xfea5@users.noreply.github.com> 2024-04-21 16:32:47 +0300
commit: c79bbdb0448501987c0c16c2877c780143156d1e (patch)
tree: ff518148959a27e0efa655b3e40c4efea074a383 /src/main.c
parent: Write other process' memory (diff)
download: linux-game-trainer-c79bbdb0448501987c0c16c2877c780143156d1e.tar.gz
linux-game-trainer-c79bbdb0448501987c0c16c2877c780143156d1e.zip
1 files changed, 88 insertions, 37 deletions
diff --git a/src/main.c b/src/main.c
index 667ca4c..623d767 100644
--- a/src/main.c
+++ b/src/main.c
@@ -1,5 +1,4 @@
 #include <string.h>
-#include <stdint.h>
 #include <stdlib.h>
 #include <stdio.h>
 #include <sys/ptrace.h>
@@ -8,24 +7,94 @@
 #include "util.h"
 #include "vm.h"
-void hex2bytes(char *hex)
+Bytes hex2bytes(const char *hex)
 {
-  size_t len = strlen(hex);
+  size_t hlen = strlen(hex);
-  char bytes[len + 1];
+  Bytes bytes = {
+    .data = xmalloc(hlen / 2),
+    .len = hlen / 2,
+  };
-  for (size_t i = 0; i < len; ++i) {
+  for (size_t i = 0; i < hlen; ++i) {
    char hdig[3] = { hex[i*2], hex[i*2+1], '\0' };
-    sscanf(hdig, "%hhx", &bytes[i]);
+    sscanf(hdig, "%hhx", &bytes.data[i]);
  }
-  memcpy(hex, bytes, len);
+  return bytes;
-  hex[len] = '\0';
 }
-int main(int argc, char *argv[])
+void action_scan(int pid, int argc, const char *argv[])
 {
-  if (argc < 2) {
+  if (argc == 0) {
-    ERROR("Usage: %s <tracee_pid>\n", argv[0]);
+    ERROR("Scan: Missing argument <byte_sequence>\n");
+  }
+  Bytes aob = hex2bytes(argv[0]);
+  MemscanResult *results_head =  memscan(pid, aob);
+  MemscanResult *cur = results_head;
+  while (cur) {
+    void *address = cur->mapping->begin + cur->offset;
+    printf("%p\n", address);
+    cur = cur->next;
+  }
+}
+void action_read(int pid, int argc, const char *argv[])
+{
+  if (argc == 0) {
+    ERROR("Write: Missing argument <nbytes>\n");
+  }
+  if (argc == 1) {
+    ERROR("Read: Missing argument(s) [<address> ...]");
+  }
+  size_t nbytes = atol(argv[0]);
+  if (nbytes == 0) {
+    perror("atol");
+    exit(1);
+  }
+  void *address[argc-1];
+  for (size_t i = 0; i < argc-1; ++i) {
+    sscanf(argv[i+1], "%p", &address[i]);
+  }
+  for (size_t i = 0; i < argc-1; ++i) {
+    Bytes bytes = memread(pid, address[i], nbytes);
+    for (size_t j = 0; j < bytes.len; ++j) {
+      printf("%02hhx", bytes.data[j]);
+    }
+    printf("\n");
+  }
+}
+void action_write(int pid, int argc, const char *argv[])
+{
+  if (argc == 0) {
+    ERROR("Write: Missing argument <bytes>\n");
+  }
+  if (argc == 1) {
+    ERROR("Write: Missing argument [<address> ...]\n");
+  }
+  Bytes aob = hex2bytes(argv[0]);
+  printf("%s\n", aob.data);
+  void *address[argc-1];
+  for (size_t i = 0; i < argc-1; ++i) {
+    sscanf(argv[i+1], "%p", &address[i]);
+  }
+  for (size_t i = 0; i < argc-1; ++i) {
+    memwrite(pid, address[i], aob);
+  }
+}
+int main(int argc, const char *argv[])
+{
+  if (argc < 3) {
+    ERROR("Usage: %s <tracee_pid> (scan|read|write) [args ...]\n", argv[0]);
  }
  int pid;
@@ -37,32 +106,14 @@ int main(int argc, char *argv[])
  waitpid(pid, NULL, __WALL);
  LOG("Attached to process %d\n", pid);
-  char *byte_seq = "DEADBEEF";
+  if (strcmp(argv[2], "scan") == 0) {
-  size_t byte_seq_len = strlen(byte_seq);
+    action_scan(pid, argc-3, &argv[3]);
-  MemscanResult *head = memscan(pid, (uint8_t*)byte_seq, byte_seq_len);
+  } else if (strcmp(argv[2], "read") == 0) {
-  MemscanResult *cur = head;
+    action_read(pid, argc-3, &argv[3]);
+  } else if (strcmp(argv[2], "write") == 0) {
-  printf("\n\n\nMemory scan results:\n");
+    action_write(pid, argc-3, &argv[3]);
-  printf("%-16s|%-16s|%-10s|%-s\n", "Address", "Base", "Offset", "Name");
+  } else {
-  puts("--------------------------------------------------");
+    ERROR("Unknown option '%s'\n", argv[1]);
-  while (cur) {
-    printf("%-16p|%-16p|%#-10lx|%-s\n",
-           cur->mapping->begin + cur->offset,
-           cur->mapping->begin,
-           cur->offset,
-           cur->mapping->name);
-    cur = cur->next;
-  }
-  printf("\n\n");
-  char *buf = "CAFEBABE";
-  size_t len = strlen(buf);
-  cur = head;
-  while (cur) {
-    void *address = cur->mapping->begin + cur->offset;
-    memwrite(pid, address, (uint8_t*)buf, len);
-    cur = cur->next;
  }
  ptrace(PTRACE_DETACH, pid, NULL, NULL);
author	Orfeas <38209077+0xfea5@users.noreply.github.com>	2024-04-21 16:27:55 +0300
committer	Orfeas <38209077+0xfea5@users.noreply.github.com>	2024-04-21 16:32:47 +0300
commit	c79bbdb0448501987c0c16c2877c780143156d1e (patch)
tree	ff518148959a27e0efa655b3e40c4efea074a383 /src/main.c
parent	Write other process' memory (diff)
download	linux-game-trainer-c79bbdb0448501987c0c16c2877c780143156d1e.tar.gz linux-game-trainer-c79bbdb0448501987c0c16c2877c780143156d1e.zip

diff --git a/src/main.c b/src/main.c index 667ca4c..623d767 100644 --- a/src/main.c +++ b/src/main.c
@@ -1,5 +1,4 @@
1	#include <string.h>	1	#include <string.h>
2	#include <stdint.h>
3	#include <stdlib.h>	2	#include <stdlib.h>
4	#include <stdio.h>	3	#include <stdio.h>
5	#include <sys/ptrace.h>	4	#include <sys/ptrace.h>
@@ -8,24 +7,94 @@
8	#include "util.h"	7	#include "util.h"
9	#include "vm.h"	8	#include "vm.h"
10		9
11	void hex2bytes(char *hex)	10	Bytes hex2bytes(const char *hex)
12	{	11	{
13	size_t len = strlen(hex);	12	size_t hlen = strlen(hex);
14	char bytes[len + 1];	13	Bytes bytes = {
		14	.data = xmalloc(hlen / 2),
		15	.len = hlen / 2,
		16	};
15		17
16	for (size_t i = 0; i < len; ++i) {	18	for (size_t i = 0; i < hlen; ++i) {
17	char hdig[3] = { hex[i2], hex[i2+1], '\0' };	19	char hdig[3] = { hex[i2], hex[i2+1], '\0' };
18	sscanf(hdig, "%hhx", &bytes[i]);	20	sscanf(hdig, "%hhx", &bytes.data[i]);
19	}	21	}
20		22
21	memcpy(hex, bytes, len);	23	return bytes;
22	hex[len] = '\0';
23	}	24	}
24		25
25	int main(int argc, char *argv[])	26	void action_scan(int pid, int argc, const char *argv[])
26	{	27	{
27	if (argc < 2) {	28	if (argc == 0) {
28	ERROR("Usage: %s <tracee_pid>\n", argv[0]);	29	ERROR("Scan: Missing argument <byte_sequence>\n");
		30	}
		31
		32	Bytes aob = hex2bytes(argv[0]);
		33	MemscanResult *results_head = memscan(pid, aob);
		34	MemscanResult *cur = results_head;
		35	while (cur) {
		36	void *address = cur->mapping->begin + cur->offset;
		37	printf("%p\n", address);
		38	cur = cur->next;
		39	}
		40	}
		41
		42	void action_read(int pid, int argc, const char *argv[])
		43	{
		44	if (argc == 0) {
		45	ERROR("Write: Missing argument <nbytes>\n");
		46	}
		47
		48	if (argc == 1) {
		49	ERROR("Read: Missing argument(s) [<address> ...]");
		50	}
		51
		52	size_t nbytes = atol(argv[0]);
		53	if (nbytes == 0) {
		54	perror("atol");
		55	exit(1);
		56	}
		57
		58	void *address[argc-1];
		59	for (size_t i = 0; i < argc-1; ++i) {
		60	sscanf(argv[i+1], "%p", &address[i]);
		61	}
		62
		63	for (size_t i = 0; i < argc-1; ++i) {
		64	Bytes bytes = memread(pid, address[i], nbytes);
		65	for (size_t j = 0; j < bytes.len; ++j) {
		66	printf("%02hhx", bytes.data[j]);
		67	}
		68	printf("\n");
		69	}
		70	}
		71
		72	void action_write(int pid, int argc, const char *argv[])
		73	{
		74	if (argc == 0) {
		75	ERROR("Write: Missing argument <bytes>\n");
		76	}
		77
		78	if (argc == 1) {
		79	ERROR("Write: Missing argument [<address> ...]\n");
		80	}
		81
		82	Bytes aob = hex2bytes(argv[0]);
		83	printf("%s\n", aob.data);
		84	void *address[argc-1];
		85	for (size_t i = 0; i < argc-1; ++i) {
		86	sscanf(argv[i+1], "%p", &address[i]);
		87	}
		88
		89	for (size_t i = 0; i < argc-1; ++i) {
		90	memwrite(pid, address[i], aob);
		91	}
		92	}
		93
		94	int main(int argc, const char *argv[])
		95	{
		96	if (argc < 3) {
		97	ERROR("Usage: %s <tracee_pid> (scan\|read\|write) [args ...]\n", argv[0]);
29	}	98	}
30		99
31	int pid;	100	int pid;
@@ -37,32 +106,14 @@ int main(int argc, char *argv[])
37	waitpid(pid, NULL, __WALL);	106	waitpid(pid, NULL, __WALL);
38	LOG("Attached to process %d\n", pid);	107	LOG("Attached to process %d\n", pid);
39		108
40	char *byte_seq = "DEADBEEF";	109	if (strcmp(argv[2], "scan") == 0) {
41	size_t byte_seq_len = strlen(byte_seq);	110	action_scan(pid, argc-3, &argv[3]);
42	MemscanResult head = memscan(pid, (uint8_t)byte_seq, byte_seq_len);	111	} else if (strcmp(argv[2], "read") == 0) {
43	MemscanResult *cur = head;	112	action_read(pid, argc-3, &argv[3]);
44		113	} else if (strcmp(argv[2], "write") == 0) {
45	printf("\n\n\nMemory scan results:\n");	114	action_write(pid, argc-3, &argv[3]);
46	printf("%-16s\|%-16s\|%-10s\|%-s\n", "Address", "Base", "Offset", "Name");	115	} else {
47	puts("--------------------------------------------------");	116	ERROR("Unknown option '%s'\n", argv[1]);
48	while (cur) {
49	printf("%-16p\|%-16p\|%#-10lx\|%-s\n",
50	cur->mapping->begin + cur->offset,
51	cur->mapping->begin,
52	cur->offset,
53	cur->mapping->name);
54	cur = cur->next;
55	}
56
57	printf("\n\n");
58
59	char *buf = "CAFEBABE";
60	size_t len = strlen(buf);
61	cur = head;
62	while (cur) {
63	void *address = cur->mapping->begin + cur->offset;
64	memwrite(pid, address, (uint8_t*)buf, len);
65	cur = cur->next;
66	}	117	}
67		118
68	ptrace(PTRACE_DETACH, pid, NULL, NULL);	119	ptrace(PTRACE_DETACH, pid, NULL, NULL);