ReClassNET
diff --git a/‎Forms/MainForm.cs‎
Lines changed: 3 additions & 3 deletions b/‎Forms/MainForm.cs‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎Forms/PluginForm.cs‎
Lines changed: 1 addition & 1 deletion b/‎Forms/PluginForm.cs‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎Forms/ProcessBrowserForm.cs‎
Lines changed: 9 additions & 7 deletions b/‎Forms/ProcessBrowserForm.cs‎
Lines changed: 9 additions & 7 deletions
diff --git a/‎Memory/Disassembler.cs‎
Lines changed: 67 additions & 0 deletions b/‎Memory/Disassembler.cs‎
Lines changed: 67 additions & 0 deletions
@@ -311,14 +311,14 @@ private void ControlRemoteProcessToolStripMenuItem_Click(object sender, EventArg
 				return;
 			}
 
-			var action = NativeHelper.ControlRemoteProcessAction.Terminate;
+			var action = ControlRemoteProcessAction.Terminate;
 			if (sender == resumeProcessToolStripMenuItem)
 			{
-				action = NativeHelper.ControlRemoteProcessAction.Resume;
+				action = ControlRemoteProcessAction.Resume;
 			}
 			else if (sender == suspendProcessToolStripMenuItem)
 			{
-				action = NativeHelper.ControlRemoteProcessAction.Suspend;
+				action = ControlRemoteProcessAction.Suspend;
 			}
 
 			nativeHelper.ControlRemoteProcess(remoteProcess.Process.Handle, action);
 
@@ -61,7 +61,7 @@ internal PluginForm(PluginManager pluginManager, NativeHelper nativeHelper)
 			FillComboBox(closeRemoteProcessComboBox, NativeHelper.RequestFunction.CloseRemoteProcess);
 			FillComboBox(readRemoteMemoryComboBox, NativeHelper.RequestFunction.ReadRemoteMemory);
 			FillComboBox(writeRemoteMemoryComboBox, NativeHelper.RequestFunction.WriteRemoteMemory);
-			FillComboBox(disassembleRemoteCodeComboBox, NativeHelper.RequestFunction.DisassembleRemoteCode);
+			FillComboBox(disassembleRemoteCodeComboBox, NativeHelper.RequestFunction.DisassembleCode);
 			FillComboBox(controlRemoteProcessComboBox, NativeHelper.RequestFunction.ControlRemoteProcess);
 
 			setAllComboBox.DisplayMember = nameof(NativeHelper.MethodInfo.Provider);
 
@@ -30,7 +30,7 @@ public ProcessInfo SelectedProcess
 				var row = (processDataGridView.SelectedRows.Cast<DataGridViewRow>().FirstOrDefault()?.DataBoundItem as DataRowView)?.Row;
 				if (row != null)
 				{
-					return new ProcessInfo(nativeHelper, row.Field<int>("id"), row.Field<string>("name"), row.Field<string>("path"));
+					return new ProcessInfo(nativeHelper, row.Field<IntPtr>("id"), row.Field<string>("name"), row.Field<string>("path"));
 				}
 				return null;
 			}
@@ -112,21 +112,23 @@ private void RefreshProcessList()
 			var dt = new DataTable();
 			dt.Columns.Add("icon", typeof(Icon));
 			dt.Columns.Add("name", typeof(string));
-			dt.Columns.Add("id", typeof(int));
+			dt.Columns.Add("id", typeof(IntPtr));
 			dt.Columns.Add("path", typeof(string));
 
-			nativeHelper.EnumerateProcesses((pid, path) =>
+			nativeHelper.EnumerateProcesses(delegate (ref NativeHelper.EnumerateProcessData data)
 			{
-				var moduleName = Path.GetFileName(path);
+				var moduleName = Path.GetFileName(data.ModulePath);
 				if (!filterCheckBox.Checked || !CommonProcesses.Contains(moduleName.ToLower()))
 				{
 					var row = dt.NewRow();
-					row["icon"] = ShellIcon.GetSmallIcon(path);
+					row["icon"] = ShellIcon.GetSmallIcon(data.ModulePath);
 					row["name"] = moduleName;
-					row["id"] = pid;
-					row["path"] = path;
+					row["id"] = data.Id;
+					row["path"] = data.ModulePath;
 					dt.Rows.Add(row);
 				}
+
+				return true;
 			});
 
 			dt.DefaultView.Sort = "name ASC";
 
@@ -0,0 +1,67 @@
+using System;
+using System.Collections.Generic;
+using System.Diagnostics.Contracts;
+using System.Runtime.InteropServices;
+using ReClassNET.Util;
+
+namespace ReClassNET.Memory
+{
+	public class Disassembler
+	{
+		public List<DisassembledInstruction> DisassembleRemoteCode(RemoteProcess process, IntPtr address, int length)
+		{
+			Contract.Requires(process != null);
+
+			var instructions = new List<DisassembledInstruction>();
+
+			var buffer = process.ReadRemoteMemory(address, length);
+
+			var handle = GCHandle.Alloc(buffer, GCHandleType.Pinned);
+			try
+			{
+				var eip = handle.AddrOfPinnedObject();
+				var end = eip + length;
+				var virtualAddress = address;
+
+				var instruction = new NativeHelper.InstructionData();
+				while (true)
+				{
+					if (!process.NativeHelper.DisassembleCode(eip, end.Sub(eip).ToInt32(), virtualAddress, out instruction))
+					{
+						break;
+					}
+
+					instructions.Add(new DisassembledInstruction
+					{
+						Address = virtualAddress,
+						Length = instruction.Length,
+						Instruction = instruction.Instruction
+					});
+
+					eip = eip + instruction.Length;
+					if (eip.CompareTo(end) >= 0 || buffer[eip.Sub(handle.AddrOfPinnedObject()).ToInt32()] == 0xCC)
+					{
+						break;
+					}
+					virtualAddress = virtualAddress + instruction.Length;
+				}
+			}
+			finally
+			{
+				if (handle.IsAllocated)
+				{
+					handle.Free();
+				}
+			}
+
+			return instructions;
+		}
+	}
+
+	public class DisassembledInstruction
+	{
+		public IntPtr Address;
+		public int Length;
+		public string Instruction;
+	}
+}
Original file line number	Diff line number	Diff line change
`@@ -311,14 +311,14 @@ private void ControlRemoteProcessToolStripMenuItem_Click(object sender, EventArg`
`311`	`311`	`return;`
`312`	`312`	`}`
`313`	`313`
`314`		`- var action = NativeHelper.ControlRemoteProcessAction.Terminate;`
	`314`	`+ var action = ControlRemoteProcessAction.Terminate;`
`315`	`315`	`if (sender == resumeProcessToolStripMenuItem)`
`316`	`316`	`{`
`317`		`- action = NativeHelper.ControlRemoteProcessAction.Resume;`
	`317`	`+ action = ControlRemoteProcessAction.Resume;`
`318`	`318`	`}`
`319`	`319`	`else if (sender == suspendProcessToolStripMenuItem)`
`320`	`320`	`{`
`321`		`- action = NativeHelper.ControlRemoteProcessAction.Suspend;`
	`321`	`+ action = ControlRemoteProcessAction.Suspend;`
`322`	`322`	`}`
`323`	`323`
`324`	`324`	`nativeHelper.ControlRemoteProcess(remoteProcess.Process.Handle, action);`