Jeff
292ef70088
添加日期。
|
6 years ago | |
|---|---|---|
| source | 6 years ago | |
| .gitignore | 6 years ago | |
| README.md | 6 years ago | |
| db.xls | 6 years ago | |
| mssql.sql | 6 years ago | |
| mysql.sql | 6 years ago | |
| postgresql.sql | 6 years ago | |
| sqlite3.sql | 6 years ago |
README.md
一、未解决的问题:
- 微信阴影窗口无法跟随客户端移动而移动
- 微信登录窗口,附加到客户端后,如果客户端界面最小化或被遮挡,微信登录窗口会被擦除
- 微信单例模式的互斥句柄,不是通过固定的地址偏移量来CloseHandle的,而是使用系统全局遍历句柄来复制关闭的
二、hook.dll
- 通过固定的地址偏移量来获取微信账号、昵称、电话、头像http地址、省、市、email
三、暂时不实现的功能
- 不使用SetWindowsHookEx(全局或线程/局部)禁用微信窗口的最大、最小化,以及关闭按钮的隐藏功能(以后掌握内存偏移技术再处理)
- 不自动监听微信消息
四、待实现的功能
- hook.dll注入微信后,实现微信与主程序之间进程通信(当前考虑使用命名管道实现)。
五、已实现的功能
六、微信基址:
1、PC微信版本:2.6.6.25 [2019年之前]
微信账号基址:WX_ACCOUNT_BAD
- 6E121B90 = WeChatWin.dll+1131B90
微信ID基址:WX_ID_BAD
- 6E121B78 = WeChatWin.dll+1131B78 #指针
- 6E121BEC = WeChatWin.dll+1131BEC #指针
微信昵称基址:WX_NICK_BAD
- 6E121C64 = WeChatWin.dll+1131C64
微信手机基址:WX_PHONE_BAD
- 6E121C98 = WeChatWin.dll+1131C98
微信省基址:WX_PROVINCE_BAD
- 6E121D50 = WeChatWin.dll+1131D50
微信市基址:WX_CITY_BAD
- 6E121D68 = WeChatWin.dll+1131D68
微信手机设备基址:WX_DEVICE_BAD:
- 6E122030 = WeChatWin.dll+1132030
微信邮箱基址:WX_EMAIL_BAD
- 6E121C80 = WeChatWin.dll+1131C80 #指针
微信大头像基址:WX_LIMG_BAD
- 6E121F2C = WeChatWin.dll+1131F2C #指针
微信小图像基址:WX_SIMG_BAD
- 6E121F44 = WeChatWin.dll+1131F44 #指针
2、PC微信版本:2.6.7.40 [2019年3月初]
微信账号基址:WX_ACCOUNT_BAD
- 6A41C4B4 = WeChatWin.dll+125C4B4
- 6A41C250 = WeChatWin.dll+125C250
- 6A41C4B4 = WeChatWin.dll+125C4B4
微信ID基址:WX_ID_BAD
- 6A41C074 = WeChatWin.dll+74C074 #指针
微信昵称基址:WX_NICK_BAD
- 6A41C0EC = WeChatWin.dll+125C0EC
微信手机基址:WX_PHONE_BAD
- 66E6C120 = WeChatWin.dll+C19C120
微信省基址:WX_PROVINCE_BAD
- 66E6C1D8 = WeChatWin.dll+C19C1D8
微信市基址:WX_CITY_BAD
- 66E6C1F0 = WeChatWin.dll+C19C1F0
微信手机设备基址:WX_DEVICE_BAD:
- 66E6C500 = WeChatWin.dll+C19C500
微信邮箱基址:WX_EMAIL_BAD
- 6A41C108 = WeChatWin.dll+125C108 #指针
微信大头像基址:WX_LIMG_BAD
- 6A41C3B4 = WeChatWin.dll+74C3B4 #指针
微信小图像基址:WX_SIMG_BAD
- 6A41C3CC = WeChatWin.dll+74C3CC #指针