memory, PE files, etc...

gandalf23 at mail.com gandalf23 at mail.com
Tue Oct 28 13:15:40 CET 2014


On Tuesday, October 28, 2014 3:37:19 AM UTC+1, Rustom Mody wrote:
> On Tuesday, October 28, 2014 12:41:40 AM UTC+5:30, kiuh... at yahoo.it wrote:
> > On Monday, October 27, 2014 6:24:19 PM UTC+1, Tim Golden wrote:
> > > psutil is definitely your friend:
> > > 
> > >   https://github.com/giampaolo/psutil
> > > 
> > > Although WMI can be quite handy too, depending on what you're trying to do:
> > > 
> > >   http://timgolden.me.uk/python/wmi/
> > > 
> > > TJG
> > 
> > Thanks for answering.
> > I don't know if psutil is what I'm looking for.
> > What I need to do is more related to debugging than to administration.
> > Let's say I want to search for a sequence of bytes in the .text section of a given module. Can I do that with psutil?
> 
> https://code.google.com/p/pefile/
> 
> ?

I need to analyze the memory of running processes.
The answer is PyDbg or direct access to the API of Windows.



More information about the Python-list mailing list