#1
|
||||
|
||||
DOS stack under Win2k
Hello,
i hope this post is right located in this Thread. I would like to access the stack of a DOS of program from a Win32 application. I've tried the DebugAPI's SetThreadContext/GetThreadContext. Changing the EIP work's great but accessing the stack with the returned ESP Pointer fails. Then i tried to give ESP value to ReadProcessMemory but the returned value by RPM isn't the value i pushed onto the stack. You can view my testing apps with source h**p://phalcon.net/masm32/ any suggestions?? Sincerly Nukacola Last edited by Nukacola; 11-25-2004 at 22:47. |
#2
|
|||
|
|||
try this:
invoke OpenProcess,PROCESS_ALL_ACCESS, 1, idproces........ then with de handle invoke VirtualProtectEx,handle, x1 , x2 ,PAGE_EXECUTE_READWRITE,.... Then use ReadProcessMemory |
#3
|
||||
|
||||
ok,
thanks i tried that but it won't help. Same Probleme i can't get the stack-value of a running Process if it is in a loop. It's an old 16-bit DOS Process which is executed by NTVDM.EXE. I get 252 back every Time (if checking ESP), or 153632 (if checking [ESP]). I've tried to debug the application with OllyDbg but i can't find the way the stack is handled by NTVDM. Any other suggestions or reference material ??? Sincerly Nukacola |
Thread Tools | |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Exectution on the stack | arnix | General Discussion | 2 | 05-09-2005 19:03 |
DebugActiveProcessStop on Win2k | zaratustra | General Discussion | 3 | 08-27-2004 18:29 |