spacepaste

Paste details

reply | raw

  1.  
  2. import sys, os
  3. sys.path.append(sys.prefix)
  5. os.environ['PATH'] += ';' + sys.prefix
  7. from win32con import PAGE_READWRITE, MEM_COMMIT, MEM_RESERVE, MEM_RELEASE,\
  8. PROCESS_ALL_ACCESS, PROCESS_VM_OPERATION
  9. from commctrl import LVM_GETITEMTEXT, LVM_GETITEMCOUNT, LVM_SETITEMTEXTA
  11. import struct
  12. import ctypes
  13. import win32api
  14. import win32gui
  16. GetWindowThreadProcessId = ctypes.windll.user32.GetWindowThreadProcessId
  17. VirtualAllocEx = ctypes.windll.kernel32.VirtualAllocEx
  18. VirtualFreeEx = ctypes.windll.kernel32.VirtualFreeEx
  19. OpenProcess = ctypes.windll.kernel32.OpenProcess
  20. WriteProcessMemory = ctypes.windll.kernel32.WriteProcessMemory
  21. ReadProcessMemory = ctypes.windll.kernel32.ReadProcessMemory
  22. memcpy = ctypes.cdll.msvcrt.memcpy
  25. def readListViewItems(hwnd, item=0, subitem=0):
  27. # Allocate virtual memory inside target process
  28. pid = ctypes.create_string_buffer(4)
  29. p_pid = ctypes.addressof(pid)
  30. GetWindowThreadProcessId(hwnd, p_pid) # process owning the given hwnd
  31. hProcHnd = OpenProcess(PROCESS_ALL_ACCESS, False, struct.unpack("i",pid)[0])
  32. pLVI = VirtualAllocEx(hProcHnd, 0, 4096, MEM_RESERVE|MEM_COMMIT, PAGE_READWRITE)
  33. pBuffer = VirtualAllocEx(hProcHnd, 0, 4096, MEM_RESERVE|MEM_COMMIT, PAGE_READWRITE)
  35. # Prepare an LVITEM record and write it to target process memory
  36. lvitem_str = struct.pack('iiiiiiiii', *[0,item,subitem,0,0,pBuffer,4096,0,0])
  37. lvitem_buffer = ctypes.create_string_buffer(lvitem_str)
  38. copied = ctypes.create_string_buffer(4)
  39. p_copied = ctypes.addressof(copied)
  40. WriteProcessMemory(hProcHnd, pLVI, ctypes.addressof(lvitem_buffer), ctypes.sizeof(lvitem_buffer), p_copied)
  42. # iterate items in the SysListView32 control
  43. num_items = win32gui.SendMessage(hwnd, LVM_GETITEMCOUNT)
  44. #item_texts = []
  45. item_text = ''
  46. #for item_index in range(num_items):
  47. # win32gui.SendMessage(hwnd, LVM_GETITEMTEXT, item_index, pLVI)
  48. # target_buff = ctypes.create_string_buffer(4096)
  49. # ReadProcessMemory(hProcHnd, pBuffer, ctypes.addressof(target_buff), 4096, p_copied)
  50. # item_texts.append(target_buff.value)
  51. win32gui.SendMessage(hwnd, LVM_GETITEMTEXT, item, pLVI)
  52. target_buff = ctypes.create_string_buffer(4096)
  53. ReadProcessMemory(hProcHnd, pBuffer, ctypes.addressof(target_buff), 4096, p_copied)
  54. item_text = target_buff.value
  56. VirtualFreeEx(hProcHnd, pBuffer, 0, MEM_RELEASE)
  57. VirtualFreeEx(hProcHnd, pLVI, 0, MEM_RELEASE)
  58. win32api.CloseHandle(hProcHnd)
  59. return item_text
  61. def SetItemText(Handle, pStr, Index , SubIndex = 0):
  63. # Allocate virtual memory inside target process
  64. pid = ctypes.create_string_buffer(4)
  65. p_pid = ctypes.addressof(pid)
  66. GetWindowThreadProcessId(Handle, p_pid) # process owning the given hwnd
  67. hProcHnd = OpenProcess(PROCESS_ALL_ACCESS, False, struct.unpack("i",pid)[0])
  68. pLVI = VirtualAllocEx(hProcHnd, 0, 4096, MEM_RESERVE|MEM_COMMIT, PAGE_READWRITE)
  70. #c_string = pStr.encode('ascii') + '\x00'
  71. c_string = ctypes.c_wchar_p(pStr)
  72. strSize = ctypes.sizeof(c_string)+4
  74. #alloc some shared memory for our string
  75. SharedProcMemString = VirtualAllocEx(hProcHnd, 0, strSize, MEM_RESERVE|MEM_COMMIT, PAGE_READWRITE)
  77. # Prepare an LVITEM record and write it to target process memory
  78. lvitem_str = struct.pack('iiiiiiiii', *[0,Index,SubIndex,0,0,SharedProcMemString,strSize,0,0])
  79. lvitem_buffer = ctypes.create_string_buffer(lvitem_str)
  80. copied = ctypes.create_string_buffer(4)
  81. p_copied = ctypes.addressof(copied)
  82. print ctypes.sizeof(lvitem_buffer)
  83. print strSize
  84. print WriteProcessMemory(hProcHnd, SharedProcMemString, c_string, strSize , p_copied)
  85. print WriteProcessMemory(hProcHnd, pLVI, ctypes.addressof(lvitem_buffer), ctypes.sizeof(lvitem_buffer), p_copied)
  88. #set the text
  89. win32gui.SendMessage(Handle, LVM_SETITEMTEXTA, Index, pLVI)
  91. #'clean up
  92. #FreeMemSharedNT hProcess, SharedProcMem, LVISize
  93. #FreeMemSharedNT hProcess, SharedProcMemString, strSize
  94. VirtualFreeEx(hProcHnd, SharedProcMemString, 0, MEM_RELEASE)
  95. VirtualFreeEx(hProcHnd, pLVI, 0, MEM_RELEASE)
  96. win32api.CloseHandle(hProcHnd)
  100. import win32gui
  103. if __name__ == '__main__':
  104. print "starting main"
  105. RetVal0 = win32gui.FindWindow('#32770', 'Windows Task Manager')
  106. RetVal1 = win32gui.FindWindowEx(RetVal0, 0, '#32770', None)
  107. RetVal = win32gui.FindWindowEx(RetVal1, 0, 'SysListView32', 'Processes')
  108. pSource = 'pythonw.exe'
  109. pDest = 'myGui.exe'
  111. if RetVal:
  112. ii=0
  113. i=0
  114. while ii < 26:
  115. RetStr = readListViewItems(RetVal, i, ii)
  116. #print readListViewItems1(RetVal, i)
  117. #print RetStr
  118. if RetStr == '': # Then ' we've come to the end of the columns
  119. if i == 0: #'was the first loop thru
  120. i = 1 #'could be the correct column, but .exe not found so add +1
  121. ii = -1 #'start the column count over
  122. else:
  123. break
  125. elif ".exe" in RetStr.lower(): #'we found the Process column
  126. #tCount = win32gui.GetItemCount(RetVal)
  127. # iterate items in the SysListView32 control
  128. tCount = win32gui.SendMessage(RetVal, LVM_GETITEMCOUNT)
  129. for i in range(i, tCount - 1):
  130. RetStr = readListViewItems(RetVal, i, ii)
  131. if RetStr.lower() == pSource.lower():
  132. #If Delete Then
  133. # Call DeleteItem(RetVal, i) #'doesnt work as well
  134. #Else
  135. print 'calling SetItemText'
  136. print RetStr
  137. print pSource
  138. SetItemText(RetVal, pDest, i, ii)
  139. #End If
  140. #ModifyExe = True
  142. #'[EXIT DO] can be taken out if the app runs multiple instances
  143. #'the reason why i put it here is because i am trying to limit
  144. #' the amount of unneeded sendmessage calls to taskmanager
  145. #Exit Do #'should only find 1 instance of itself.
  146. #break
  147. ii = ii + 1
  148.  
Powered by spacepaste. Paste removal.