Solved

Memory

Posted on 1998-09-24
6
176 Views
Last Modified: 2010-04-06
Hello ,

Is it possible to get access to whole (physicly + virtual)
memory under windows using delphi/windows API ?

As i know accessing memory under protected mode possible
only from 0 ring or parent application/driver . But
"memory dump applications" reading memory without additional
VXD drivers.

Ivan
0
Comment
Question by:jecksom
  • 3
  • 2
6 Comments
 
LVL 20

Expert Comment

by:Madshi
ID: 1340739
Look at winAPI "VirtualProtect(Ex)". Sorry, have neither experience with these functions nor sources.

Regards, Madshi.
0
 
LVL 12

Expert Comment

by:rwilson032697
ID: 1340740
No it isn't, except by using a ring 0 device (VxD) and even then you are in tricky territory. Modern OSes simply cannot allow a process to have unrestricted _access_, even to read memory.

To do so would completely destroy any semblance of security.

Sorry :-(

Raymond.

0
 
LVL 1

Author Comment

by:jecksom
ID: 1340741
Hi , rwilson!

Well , i've already found solution . I can recommend you to look on win32 functions more
closer , which are :
VirtualQueryex
VirtualProtectex
read/writeProcessMemory
createprocesSnopShot ,first/Nextprocess,first/nextheap32,debug functions.
(o'coz some of those functions doesn't have support under NT 4.0 and probably will
be only from 5.0 > , but who could carry about users that using GUI - SERVER OS ?!?,
so it isn't a problem).

Thanx you anyway!
Jecksom

PS : Madshi ! You gave me great idea where to start , so after 2 days digging web pages ,
i've understand how it works !



0
Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

 
LVL 20

Expert Comment

by:Madshi
ID: 1340742
jecksom,

was this one-line-comment helpful enough for 175 points???
If it was, tell me. Then I will post a dummy answer.
If not, just keep the question idle. It will then be automatically deleted in a few weeks.

Regards, Madshi.
0
 
LVL 1

Author Comment

by:jecksom
ID: 1340743
Madshi !

Yep , i guess it 's enough for 175 point ! gimme your dummy answer ! :)

Jecksom

0
 
LVL 20

Accepted Solution

by:
Madshi earned 170 total points
ID: 1340744
Thank you, Jecksom...   :-)
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The uses clause is one of those things that just tends to grow and grow. Most of the time this is in the main form, as it's from this form that all others are called. If you have a big application (including many forms), the uses clause in the in…
Introduction I have seen many questions in this Delphi topic area where queries in threads are needed or suggested. I know bumped into a similar need. This article will address some of the concepts when dealing with a multithreaded delphi database…
Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…
Many functions in Excel can make decisions. The most simple of these is the IF function: it returns a value depending on whether a condition you describe is true or false. Once you get the hang of using the IF function, you will find it easier to us…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now