Initial commit

Author: Klarexxx

.gitignore

@@ -0,0 +1,2 @@
+/target
+Cargo.lock

Cargo.toml

@@ -0,0 +1,17 @@
+[package]
+name = "LuaExMemoryTool"
+version = "0.1.0"
+edition = "2024"
+repository = "https://github.com/Klarexxx/LuaExMemoryTool"
+license = "MIT"
+
+[dependencies]
+mlua = { version = "0.11.5", features = ["vendored", "lua54"] }
+
+[profile.release]
+strip = true
+lto = true
+debug = false
+codegen-units = 1
+panic = "abort"
+opt-level = "s"

LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2025 klarex
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

README.md

@@ -0,0 +1,164 @@
+# LuaExMemoryTool
+
+The LuaExMemoryTool is a Rust-based executable that allows running Lua scripts for **external process memory access and manipulation** on Linux and Android systems.  
+It uses the **mlua** library to embed Lua and exposes additional native functions for process and memory operations.
+
+> Root access is required.
+
+## Overview
+
+The project compiles into a standalone executable.  
+You provide a `.lua` file path as an argument, and the executable runs that Lua script with extended memory-related APIs.
+
+Supported platforms:
+- Linux
+- Android
+
+## Build
+
+This is a standard Rust project.
+
+Requirements:
+- Rust toolchain
+- Cargo
+
+Build command:
+```bash
+cargo build --release
+````
+
+The resulting executable will be located under:
+
+```
+target/release/
+```
+
+## Usage
+
+Run the executable and pass a Lua script path:
+
+```bash
+./LuaExMemoryTool script.lua
+```
+
+Example Lua scripts are provided in the `examples/` directory.
+
+## Lua API
+
+### Process List
+
+Retrieve the list of currently running processes:
+
+```lua
+for _, item in ipairs(get_process_list()) do
+    local pid = item.pid
+    local package_name = item.name
+end
+```
+
+Aliases:
+
+* `get_process_list`
+* `process_list`
+
+Each item contains:
+
+* `pid`: number
+* `name`: string
+
+### Kill Process
+
+Terminate a process by PID:
+
+```lua
+kill_process(pid)
+```
+
+---
+
+### `process` Class
+
+Used to initialize and manage a target process.
+
+#### Initialization
+
+Initialize by package name:
+
+```lua
+process = process.init("package_name")
+```
+
+Initialize by PID:
+
+```lua
+process = process.init_via_pid(pid)
+```
+
+Fields:
+
+* `pid`: number
+* `name`: string
+
+#### Memory Maps
+
+Retrieve memory mappings of the process:
+
+```lua
+for map in process:get_maps() do
+    -- ...
+end
+```
+
+Each map entry contains:
+
+* `start`: number
+* `end`: number
+* `perms`: string
+* `offset`: number
+* `dev`: string
+* `inode`: number
+* `path`: string
+
+---
+
+### `memory` Class
+
+Used to read and write process memory.
+
+#### Initialization
+
+```lua
+process = process.init("package_name")
+memory = memory.init(process)
+```
+
+#### Read / Write Methods
+
+Read methods require only an address.
+Write methods require an address and a value.
+
+Supported methods:
+
+* `read_i8(address)` / `write_i8(address, value)`
+* `read_bool(address)` / `write_bool(address, value)`
+* `read_i16(address)` / `write_i16(address, value)`
+* `read_i32(address)` / `write_i32(address, value)`
+* `read_i64(address)` / `write_i64(address, value)`
+* `read_float(address)` / `write_float(address, value)`
+* `read_float64(address)` / `write_float64(address, value)`
+* `read_pointer(address)` / `write_pointer(address, value)`
+* `read_hex(address, length)`
+* `write_hex(address, hex_string)`
+
+## Examples
+
+Example Lua scripts are available in the `examples/` directory and demonstrate:
+
+* Process listing
+* Process initialization
+* Memory map inspection
+* Memory read/write operations
+
+## License
+
+MIT License

examples/get_maps.lua

@@ -0,0 +1,65 @@
+process = process.init("example_app");
+
+for _, item in pairs(process:get_maps()) do
+    if item.path then
+        if string.find(item.path, "GameAssembly.so", 1, true) then
+            print("start: " .. item.start)
+            print("end: " .. item["end"])
+            print("perms: " .. item.perms)
+            print("offset: " .. item.offset)
+            print("dev: " .. item.dev)
+            print("inode: " .. item.inode)
+            print("path: " .. item.path)
+            print("\n")
+        end
+    end
+end
+
+--[[
+
+start: number
+end: number
+perms: string
+offset: number
+dev: string
+inode: number
+path: string
+
+----------------------------
+
+start: 138617167020032
+end: 138617192181760
+perms: r--p
+offset: 0
+dev: 103:02
+inode: 16687707
+path: /example_app/GameAssembly.so
+
+
+start: 138617192181760
+end: 138617229164544
+perms: r-xp
+offset: 25161728
+dev: 103:02
+inode: 16687707
+path: /example_app/GameAssembly.so
+
+
+start: 138617229164544
+end: 138617231609856
+perms: r--p
+offset: 62144512
+dev: 103:02
+inode: 16687707
+path: /example_app/GameAssembly.so
+
+
+start: 138617231609856
+end: 138617233391616
+perms: rw-p
+offset: 64589824
+dev: 103:02
+inode: 16687707
+path: /example_app/GameAssembly.so
+
+]]

examples/get_module_base.lua

@@ -0,0 +1,30 @@
+function getModuleBase(process, lib_name)
+    for _, item in pairs(process:get_maps()) do
+        if item.path then
+            if string.find(item.path, lib_name, 1, true) then
+                if item.perms == 'r--p' then
+                    return item.start
+                end
+            end
+        end
+    end
+end
+
+process = process.init("example_app");
+
+module = getModuleBase(process, "GameAssembly.so");
+
+if module then 
+    print("GameAssembly.so Start Address: " .. module)
+    print("GameAssembly.so Start Address: 0x" .. string.format("%X", module))
+else
+    print("GameAssembly.so Not Found")
+end
+
+--[[
+
+GameAssembly.so Start Address: 138617167020032
+
+138617167020032 == 0x7E1253000000
+
+]]

examples/mlbb.lua

@@ -0,0 +1,31 @@
+function getModuleBase(process, lib_name)
+    for _, item in pairs(process:get_maps()) do
+        if item.path then
+            if string.find(item.path, lib_name, 1, true) then
+                if item.perms == 'r--p' then
+                    return item.start
+                end
+            end
+        end
+    end
+end
+
+process = process.init("com.mobile.legends:UnityKillsMe");
+print("process initialized")
+
+memory = memory.init(process);
+print("memory initialized")
+
+module = getModuleBase(process, "libcsharp.so");
+
+
+if module then
+    print("libcsharp.so Start Address: 0x" .. string.format("%X", module))
+else
+    print("libcsharp.so Not Found")
+end
+
+-- you need to find it :)
+map_hack = 0x1234567
+
+memory:write_hex(module + map_hack, "20 00 80 D2 C0 03 5F D6");

examples/process_list.lua

@@ -0,0 +1,26 @@
+for _, item in ipairs(get_process_list()) do
+    local pid = item.pid
+    local package_name = item.name
+    print(pid, package_name)
+end
+
+--[[
+
+535     android.process.media
+1126    com.android.camera
+1612    com.android.vending
+
+]]
+
+
+-- find process
+for _, item in ipairs(get_process_list()) do
+    local pid = item.pid
+    local app_name = item.name
+
+    if string.find(app_name, "example_app", 1, true) then
+        print("process is running")
+        print(pid, app_name)
+    end
+    
+end