讀取內存數據通常使用 ReadProcessMemory 函數,其原型定義如下:
BOOL?ReadProcessMemory(HANDLE?hProcess, //?handle?of?the?process?whose?memory?is?read?
LPCVOID?lpBaseAddress, //?address?to?start?reading
LPVOID?lpBuffer, //?address?of?buffer?to?place?read?data
DWORD?nSize, //?number?of?bytes?to?read
LPDWORD?lpNumberOfBytesRead? //?address?of?number?of?bytes?read
);
其中 nSize 參數指定讀取數據的字節數。
因此,讀取內存1個字節示例代碼如下:
var v?:?byte; Num?:?Cardinal;begin
ReadProcessMemory(processHandle,?$00ff0011,?@v,?sizeof(v),?Num);end;