C利用句柄操作窗口

c#實(shí)現(xiàn)過程:過程一:找到當(dāng)前鼠標(biāo)位置的句柄您的使用2個(gè)WinAPI(俺喜歡自己封裝下來用)：田日ViewCode[Dlllmport( EntryPoint="GetCursorPos")]publicstaticexternboolGetCursorPos(outPointpt);[Dlllmport("",EntryPoint="WindowFromPoint")]publicstaticexternIntPtrWindowFromPoint(Pointpt);SBEHEBndexOf;)publicoverridestringToString()(StringBuilderresult= newStringBuilder();for(WinHWNDwinHandle=this;winHandle!=null(( "｛0｝：｛1｝；" ，Escape,if==-1)break;;winHandle=return().TrimEnd();privatestaticstringGetBaseMark(stringsMark)string[]sMarks=();returnsMarks[-1].Split()[0];privatestaticstring[]GetChildMarks(stringsMark)string[]sMarks=();string[]sChildMarks=newstring[-string[]sChildMarks=newstring[-1];for(inti=0;i<;isChildMarks[i]=sMarks[i];returnsChildMarks;foreach(IntPtrbaseHwndinbaseHwnds)IntPtrhandle=baseHwnd;for(inti=- 1;i>= 0;i-)string[]sChildMark=sChildMarks[i].Split(tryhandle=(handle,UnEscape(sChildMark[catch);O]))[(sChildMark[1])];break;if(i==0)returnnewWinHWND(handle);}continue;)returnnull;#region轉(zhuǎn)義privatestaticprivatestaticstringEscape(stringarg)return(").Replace( );privatestaticprivatestaticstringUnEscape(stringarg)return().Replace( );#endregionpublicstaticWinHWNDGetWinHWND()(returnnewWinHWND()));))上全部代碼,里面加了窗口的部分屬性,擴(kuò)展其他的屬性,自己發(fā)揮吧,就是搞WinAPI田臼ViewCodeusingSystem;usingusing;using;usingusing;using;namespacelnformationCollectionDataF川publicclassWinAPI#regionWinodwsAPI[Dlllmport("",EntryPoint"FindWindow")]privatestaticexternIntPtrFindWindow(stringIpCIassName,stringIpWindowName);[Dlllmport("",EntryPoint="FindWindowEx")]privatestaticexternIntPtrFindWindowEx(lntPtrhwndParent,IntPtrhwndChildAfter, stringIpszClass,stringIpszWindow);[Dlllmport( "",EntryPoint= "SendMessage")]privatestaticexternintSendMessage(lntPtrhWnd,intMsg,IntPtrwParam,stringIParam);[Dlllmport( "",EntryPoint= "GetParent")]publicstaticexternIntPtrGetParent(lntPtrhWnd);[Dlllmport( Entrypoint="GetCursorPos")]publicstaticexternboolGetCursorPos(outPointpt);[Dlllmport("",EntryPoint="WindowFromPoint",CharSet=,ExactSpelling=true)]publicstaticexternIntPtrWindowFromPoint(Pointpt);[Dlllmport( "",CharSet=]publicstaticexternintGetClassName(lntPtrhWnd,StringBuilderIpCIassName,intnMaxCount);[Dlllmport( "",CharSet=]

public[Dlllmport(public[Dlllmport(public[Dlllmport(public[Dlllmport(public"",CharSet=]static extern int GetWindowRect(lntPtrhwnd, ref Rectanglerc);"",CharSet=]static extern int GetClientRect(lntPtrhwnd, ref Rectanglerc);"",CharSet=]static extern int MoveWindow(lntPtrhwnd, int x, inty,intnWidth, intnHeight,boolbRepaint);[Dlllmport([Dlllmport("",CharSet=,SetLastError=true,ExactSpelling=true)]publicstaticexternintScreenToClient(lntPtrhWnd,refRectanglerect);#endregion#region封裝API方法ndexOf;}privateRectangleGetRect()(if==null)returndefault(Rectangle);Rectangleclientsize=;RectangleclientPoint=);returnnewRectangle,,,;)publicstaticWinHWNDGetWinHWND()returnnewWinHWND()));)publicoverridestringToStringOStringBuilderresult=newStringBuilder();for(WinHWNDwinHandle=this;winHandle!=null"{0}:{1};" ,Escape,if==-1)break;return().TrimEnd();)privatestaticstringGetBaseMark(stringsMark);winHandle=string[]sMarks=();returnsMarks[-1].Split()[0];)privatestaticstring[]GetChildMarks(stringsMark)string[]sMarks=();string[]sChildMarks=newstring[-1];for(inti=0;i<;i++)sChildMarks[i]=sMarks[i];returnsChildMarks;)foreach(IntPtrbaseHwndinbaseHwnds)IntPtrhandle=baseHwnd;for(inti=- 1;i>= 0;i-)tryhandle=(handle,UnEscape(sChildMark[catchbreak;if0)returnnewWinHWND(handle);ifO]))[(sChildMark[1])];continue;returnnull;)#region轉(zhuǎn)義privatestaticstringEscape(stringarg)return( ).Replace( );privatestaticstringUnEscape(stringarg),).Replace( );,).Replace( );}#endregion)}效果:Postsubject:DllInjectionThisismyoldtutorialondllinjection...peoplehavebeenaskingaboutthistopicabitrecently,so...hereitis:DllInjectionTutorialbyDarawkIntroductionTheCreateRemoteThreadmethodTheSetWindowsHookExmethodThecodecavemethodAppendixA-MethodsofobtainingaprocessIDAppendixB-MethodsofobtainingathreadIDAppendixC-CompleteCreateRemoteThreadexamplesourcecodeAppendixD-CompleteSetWindowsHookExexamplesourcecodeAppendixE-CompletecodecaveexamplesourcecodeIntroductionInthistutoriali'lltrytocoveralloftheknownmethods(oratleast,thosethatIknow=p)ofinjectingdll'sintoaprocess.DllinjectionisincrediblyusefulforTONSofstuff(gamehacking,functionhooking,codepatching,keygenning,unpacking,etc..).Thoughtherearescatteredtutorialsonthesetechniquesavailablethroughouttheweb,Ihaveyettoseeanycompletetutorialsdetailingallofthem(theremayevenbemoreouttherethanIhavehere,ofcourse),andcomparingtheirrespectivestrength'sandweakness's.Thisispreciselywhati'llattempttodoforyouinthispaper.Youarefreetoreproduceorcopythispaper,solongaspropercreditisgivenandyoudon'tmodifyitwithoutspeakingtomefirst.TheCreateRemoteThreadmethodI'veusedthisintonsofstuff,andIonlyrecentlyrealizedthatalotofpeoplehaveneverseenit,orknowhowtodoit.Ican'ttakecreditforthinkingitup...Igotitfromanarticleoncodeproject,butit'saneattrickthatIthinkmorepeopleshouldknowhowtouse.Thetrickissimple,andelegant.ThewindowsAPIprovidesuswithafunctioncalledCreateRemoteThread().Thisallowsyoutostartathreadinan