eracross Posted November 20, 2010 Share Posted November 20, 2010 Guys how can i get the address of a thread? something like this "StartAddress" Link to comment Share on other sites More sharing options...
Ascend4nt Posted November 20, 2010 Share Posted November 20, 2010 (edited) You'll need to open a thread handle with THREAD_QUERY_INFORMATION access, and you can retrieve the start address using something along the lines of the below code. (Note '-2' is a pseudo-handle to the current thread): Local $iPtrSz=4,$aRet,$hThread=Ptr(-2) If @AutoItX64 Then $iPtrSz*=2 $aRet=DllCall("ntdll.dll","long","NtQueryInformationThread","handle",$hThread,"int",9,"ptr*",0,"ulong",$iPtrSz,"ulong*",0) If Not @error And $aRet[0]=0 And $aRet[5]=$iPtrSz Then ConsoleWrite("Start address:"&$aRet[3]&@CRLF) Else ConsoleWrite("Error getting start address"&@CRLF) EndIf *edit: added @error check Edited November 20, 2010 by Ascend4nt My contributions: Performance Counters in Windows - Measure CPU, Disk, Network etc Performance | Network Interface Info, Statistics, and Traffic | CPU Multi-Processor Usage w/o Performance Counters | Disk and Device Read/Write Statistics | Atom Table Functions | Process, Thread, & DLL Functions UDFs | Process CPU Usage Trackers | PE File Overlay Extraction | A3X Script Extract | File + Process Imports/Exports Information | Windows Desktop Dimmer Shade | Spotlight + Focus GUI - Highlight and Dim for Eyestrain Relief | CrossHairs (FullScreen) | Rubber-Band Boxes using GUI's (_GUIBox) | GUI Fun! | IE Embedded Control Versioning (use IE9+ and HTML5 in a GUI) | Magnifier (Vista+) Functions UDF | _DLLStructDisplay (Debug!) | _EnumChildWindows (controls etc) | _FileFindEx | _ClipGetHTML | _ClipPutHTML + ClipPutHyperlink | _FileGetShortcutEx | _FilePropertiesDialog | I/O Port Functions | File(s) Drag & Drop | _RunWithReducedPrivileges | _ShellExecuteWithReducedPrivileges | _WinAPI_GetSystemInfo | dotNETGetVersions | Drive(s) Power Status | _WinGetDesktopHandle | _StringParseParameters | Screensaver, Sleep, Desktop Lock Disable | Full-Screen Crash Recovery Wrappers/Modifications of others' contributions: _DOSWildcardsToPCRegEx (original code: RobSaunder's) | WinGetAltTabWinList (original: Authenticity) UDF's added support/programming to: _ExplorerWinGetSelectedItems | MIDIEx UDF (original code: eynstyne) (All personal code/wrappers centrally located at Ascend4nt's AutoIT Code) Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now