ntmemoryapi 2.1.3__tar.gz → 2.2.0__tar.gz

{ntmemoryapi-2.1.3 → ntmemoryapi-2.2.0}/PKG-INFO

@@ -1,7 +1,7 @@
 Metadata-Version: 2.3
 Name: ntmemoryapi
-Version: 2.1.3
-Summary: Simple library for Windows to manipulate process virtual memory with stelthy syscall wraps
+Version: 2.2.0
+Summary: Simple library for Windows to manipulate process virtual memory with stelthy syscall wraps.
 Author: Xenely
 Requires-Dist: psutil>=7.1.3
 Requires-Python: >=3.10

{ntmemoryapi-2.1.3 → ntmemoryapi-2.2.0}/pyproject.toml

@@ -1,7 +1,7 @@
 [project]
 name = "ntmemoryapi"
-version = "2.1.3"
-description = "Simple library for Windows to manipulate process virtual memory with stelthy syscall wraps"
+version = "2.2.0"
+description = "Simple library for Windows to manipulate process virtual memory with stelthy syscall wraps."
 authors = [
     {name = "Xenely"}
 ]

{ntmemoryapi-2.1.3 → ntmemoryapi-2.2.0}/src/ntmemoryapi/__init__.py

@@ -505,8 +505,8 @@ class Process:
 
             raise ValueError("Invalid pattern: `%s`" % pattern)
 
-        # Result list of found addresses
-        found_addresses = []
+        # List of regions to scan
+        to_scan_regions = []
 
         # iterate memory regions and finding addresses at them
         for region in self.list_memory_regions(allowed_states, allowed_protects, allowed_types, memory_regions_filter):
@@ -528,18 +528,39 @@ class Process:
                 continue
 
             # Scan params
-            scan_start = max(region_start, start_address) if start_address is not None else region_start
-            scan_size = min(region_end, end_address) - scan_start if end_address is not None else region_end - scan_start
+            scan_adderss = max(region_start, start_address) if start_address is not None else region_start
+            scan_size = min(region_end, end_address) - scan_adderss if end_address is not None else region_end - scan_adderss
+
+            # Save region information to scan later
+            to_scan_regions.append((scan_adderss, scan_size))
+
+        # If no regions to scan presented
+        if not to_scan_regions:
+            return []
+
+        # Result list of found addresses
+        found_addresses = []
+
+        # Pre-allocated buffer to hold read memory
+        read_memory_buffer = (ctypes.c_byte * max(item[-1] for item in to_scan_regions) + 1)()
+
+        # Iterate regions to scan read them and find pattern
+        for scan_adderss, scan_size in to_scan_regions:
+
+            # If required amount of addresses found
+            if return_first is not None and return_first <= 0:
+                break
 
-            # Read region as bytes
             try:
-                read_region_bytes = self.read_bytes(scan_start, scan_size)
+
+                # Read bytes into pre-allocated buffer
+                self.read_into_buffer(scan_adderss, scan_size, ctypes.addressof(read_memory_buffer))
 
             except Exception:
-                continue
+                pass
 
             # Pattern scan region using SIMD KMP algorithm
-            self.__kmp.scanAOB(read_region_bytes, scan_size, pattern.strip().encode(), ctypes.c_uint64(scan_start), ctypes.c_uint64(return_first if return_first is not None else 0), ctypes.byref(scan_result := PatternScanBuffer()))
+            self.__kmp.scanAOB(ctypes.addressof(read_memory_buffer), scan_size, pattern.strip().encode(), ctypes.c_uint64(scan_adderss), ctypes.c_uint64(return_first if return_first is not None else 0), ctypes.byref(scan_result := PatternScanBuffer()))
 
             # Read result addresses
             addresses = scan_result.read()
@@ -665,6 +686,13 @@ class Process:
 
         return buffer
 
+    def read_into_buffer(self, address: int, size: int, buffer_pointer: int) -> None:
+        """Read bytes array of variadic size located at given address into pre-allocated internal buffer by pointer."""
+
+        # If result failed
+        if (result := _nt_read_virtual_memory(self.handle, address, buffer_pointer, size, None)):
+            raise MemoryReadError(result, address)
+
     def write_int8(self, address: int, value: int) -> None:
         """Write 1 byte signed integer value at given address."""
 

{ntmemoryapi-2.1.3 → ntmemoryapi-2.2.0}/src/ntmemoryapi/errors.py

@@ -5,8 +5,11 @@
 # | Discord: xenely                     |
 # +-------------------------------------+
 
+import typing
+
+
 # ==-------------------------------------------------------------------== #
-# Classes                                                                 #
+# Base errors classes                                                     #
 # ==-------------------------------------------------------------------== #
 class NtError(Exception):
     """Exception that raises on `nt` functions calls fails."""
@@ -40,6 +43,30 @@ class NtError(Exception):
         return "%s%08x" % (hex_prefix if hex_prefix is not None else "", self.status)
 
 
+class MemoryError(NtError):
+    """Exception that raises on virtual memory read fail."""
+
+    # ==--------------------------------== #
+    # Public methods                       #
+    # ==--------------------------------== #
+    def __init__(self, status: int, address: int, operation: typing.Literal["read", "write"]):
+
+        # Save initializer arguments as an attributes
+        self.address = address
+        self.operation = operation
+
+        # Call initializer of parrent class
+        super().__init__(None, status)
+
+    def __str__(self) -> str:
+        """Overload triggered on `str` cast calls"""
+
+        return "Unalble to %s memory at `0x%08x` address, `nt` function failed with `%s` status" % (self.operation, self.address, self.get_hex_status())
+
+
+# ==-------------------------------------------------------------------== #
+# Errors classes                                                          #
+# ==-------------------------------------------------------------------== #
 class OpenProcessError(NtError):
     """Exception that raises on process open fail."""
 
@@ -63,7 +90,7 @@ class OpenProcessError(NtError):
         return "Unable to open process: %s" % self.message
 
 
-class MemoryReadError(NtError):
+class MemoryReadError(MemoryError):
     """Exception that raises on virtual memory read fail."""
 
     # ==--------------------------------== #
@@ -71,19 +98,11 @@ class MemoryReadError(NtError):
     # ==--------------------------------== #
     def __init__(self, status: int, address: int):
 
-        # Save initializer arguments as an attributes
-        self.address = address
-
         # Call initializer of parrent class
-        super().__init__(None, status)
-
-    def __str__(self) -> str:
-        """Overload triggered on `str` cast calls"""
+        super().__init__(status, address, "read")
 
-        return "Unalble to read memory at `0x%08x` address, `nt` function failed with `%s` status" % (self.address, self.get_hex_status())
 
-
-class MemoryWriteError(NtError):
+class MemoryWriteError(MemoryError):
     """Exception that raises on virtual memory read fail."""
 
     # ==--------------------------------== #
@@ -91,13 +110,5 @@ class MemoryWriteError(NtError):
     # ==--------------------------------== #
     def __init__(self, status: int, address: int):
 
-        # Save initializer arguments as an attributes
-        self.address = address
-
         # Call initializer of parrent class
-        super().__init__(None, status)
-
-    def __str__(self) -> str:
-        """Overload triggered on `str` cast calls"""
-
-        return "Unalble to write memory at `0x%08x` address, `nt` function failed with `%s` status" % (self.address, self.get_hex_status())
+        super().__init__(status, address, "write")