Scan and edit memory using WinAPI functions such as ReadProcessMemory and WriteProcessMemory
To create Windows executables in the linux subsystem, you need to install mingw cross-compiler:
sudo apt-get install mingw-w64
Then you can create 32-bit Windows executables using the makefile with:
make 32bit
And 64-bit Windows executables with:
make 64bit
Program takes the name of the exe (i.e. "slack.exe") running the process you'd like to examine and the search string.
.\memscan.exe [Process Name] [Search String]
Note: memscan.exe must be compiled as a 64bit executable to examine 64 bit processes