Skip to content

jburnitz/memory-tools

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits

.gitignore

.gitignore

 
 

README.md

README.md

 
 

dumpmem

dumpmem

 
 

dumpmem.c

dumpmem.c

 
 

makefile

makefile

 
 

patchmem

patchmem

 
 

patchmem.c

patchmem.c

 
 

Repository files navigation

memory-tools

Some simple tools to view and edit a running process using ptrace, without the overhead of gdb GDB is the obvious better tool for any real work, but it's a neat insight into how the syscalls work

An example usage would be on a.out with PID 12969, first find the memory location of the image with

joe@debian:$ cat /proc/12969/maps 08048000-08049000 r-xp 00000000 08:04 6045666 /home/joe/tmp/a.out ... joe@debian:$

The first line of /proc/PID/maps is memory address of the executable section, indicated by the x in the permissions field. 08048000 08049000 are the start and end memory addresses of the a.out executable, which dumpmem and patchmem can use.

About

some simple tools to edit another running process utilizing the ptrace interface on Linux, without the overhead of gdb

Resources

Readme
Activity

Stars

2 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases 1

initial release Latest
Feb 1, 2016

Packages

No packages published

Languages