a library or API providing direct access to a running PE address space
hi, i'm trying to come up with a method (either through another executable or dll) where the contents of an already running windows executable -- the stack, heaps, handlers, import pages, raw data, reference to virtual space -- basically the contents of a PE image, can be copied.
after this, i would like to write these data to another instantiation of the same executable, effectively emulating a fork().
please do give me any leads as you can, even though if it doesn't provide a complete way of doing this. small bits and clues will be much appreciated