[转]C#获取窗口进程ID与句柄还有读写内存类

1. using System;
2. using System.Text;
3. 
   
4. using System.Diagnostics;
5. using System.Runtime.InteropServices;
6. 
   
7. namespace PlantsVsZombiesTool
8. {
9.     
10.     public abstract class Helper
11.     {
12.         [DllImportAttribute("kernel32.dll", EntryPoint = "ReadProcessMemory")]
13.         public static extern bool ReadProcessMemory
14.             (
15.                 IntPtr hProcess,
16.                 IntPtr lpBaseAddress,
17.                 IntPtr lpBuffer,
18.                 int nSize,
19.                 IntPtr lpNumberOfBytesRead
20.             );
21. 
    
22.         [DllImportAttribute("kernel32.dll", EntryPoint = "OpenProcess")]
23.         public static extern IntPtr OpenProcess
24.             (
25.                 int dwDesiredAccess,
26.                 bool bInheritHandle,
27.                 int dwProcessId
28.             );
29. 
    
30.         [DllImport("kernel32.dll")]
31.         private static extern void CloseHandle
32.             (
33.                 IntPtr hObject
34.             );
35. 
    
36.         //写内存
37.         [DllImportAttribute("kernel32.dll", EntryPoint = "WriteProcessMemory")]
38.         public static extern bool WriteProcessMemory
39.             (
40.                 IntPtr hProcess,
41.                 IntPtr lpBaseAddress,
42.                 int[] lpBuffer,
43.                 int nSize,
44.                 IntPtr lpNumberOfBytesWritten
45.             );
46. 
    
47.         //获取窗体的进程标识ID
48.         public static int GetPid(string windowTitle)
49.         {
50.             int rs = 0;
51.             Process[] arrayProcess = Process.GetProcesses();
52.             foreach (Process p in arrayProcess)
53.             {
54.                 if (p.MainWindowTitle.IndexOf(windowTitle) != -1)
55.                 {
56.                     rs = p.Id;
57.                     break;
58.                 }
59.             }
60. 
    
61.             return rs;
62.         }
63. 
    
64.         //根据进程名获取PID
65.         public static int GetPidByProcessName(string processName)
66.         {
67.             Process[] arrayProcess = Process.GetProcessesByName(processName);
68. 
    
69.             foreach (Process p in arrayProcess)
70.             {
71.                 return p.Id;
72.             }
73.             return 0;
74.         }
75. 
    
76.         //根据窗体标题查找窗口句柄（支持模糊匹配）
77.         public static IntPtr FindWindow(string title)
78.         {
79.             Process[] ps = Process.GetProcesses();
80.             foreach (Process p in ps)
81.             {
82.                 if (p.MainWindowTitle.IndexOf(title) != -1)
83.                 {
84.                     return p.MainWindowHandle;
85.                 }
86.             }
87.             return IntPtr.Zero;
88.         }
89. 
    
90.         //读取内存中的值
91.         public static int ReadMemoryValue(int baseAddress,string processName)
92.         {
93.             try
94.             {
95.                 byte[] buffer = new byte[4];
96.                 IntPtr byteAddress = Marshal.UnsafeAddrOfPinnedArrayElement(buffer, 0); //获取缓冲区地址
97.                 IntPtr hProcess = OpenProcess(0x1F0FFF, false, GetPidByProcessName(processName));
98.                 ReadProcessMemory(hProcess, (IntPtr)baseAddress, byteAddress, 4, IntPtr.Zero); //将制定内存中的值读入缓冲区
99.                 CloseHandle(hProcess);
100.                 return Marshal.ReadInt32(byteAddress);
101.             }
102.             catch
103.             {
104.                 return 0;
105.             }
106.         }
107. 
     
108.         //将值写入指定内存地址中
109.         public static void WriteMemoryValue(int baseAddress, string processName, int value)
110.         {
111.             IntPtr hProcess = OpenProcess(0x1F0FFF, false, GetPidByProcessName(processName)); //0x1F0FFF 最高权限
112.             WriteProcessMemory(hProcess, (IntPtr)baseAddress, new int[] { value }, 4, IntPtr.Zero);
113.             CloseHandle(hProcess);
114.         }
115.     }
116. }
117.