aboutsummaryrefslogtreecommitdiff
path: root/KMemDriver
Commit message (Collapse)AuthorAge
* Reformatting and CTRL-Process wait issue.segfault2020-11-30
|
* Added Crypto function bodies, renamed ASM fn to get next RIP after return ↵segfault2020-10-12
| | | | and improved CRYPTO_* macros.
* Added code de/encryption on function level (WiP).segfault2020-10-11
|
* Added simple x86_64-ASM source to get the current IP.segfault2020-10-11
|
* Added some PTE code for future use.segfault2020-10-01
|
* Replaced PsSetLoadImageNotifyRoutine with a PatchGuard safe version.segfault2020-10-01
|
* updated to v141 platform toolset and fixed missing include paths / linker libssegfault2020-03-15
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* added MEM_RESERVE as comment, needs to be verified if it is required for a ↵Toni Uhlig2019-11-10
| | | | stable VAD Unlink
* do not rely on the exact size during VALLOC and do not manually calculate ↵Toni Uhlig2019-09-21
| | | | the page size (which was done wrong) since it is done by the OS
* added support for full DLL paths for MEM_MODULESToni Uhlig2019-09-19
|
* added debug message in KMemDriver if the system decides to change the ↵Toni Uhlig2019-09-18
| | | | alloc'd address and size
* removed alloc/free/VAD remnants in UpdatePPEPIfRequiredToni Uhlig2019-09-17
|
* implemented MEM_VUNLINKToni Uhlig2019-09-17
|
* use RtlAvlRemoveNode in VADUnlink iff all methods from BB failedToni Uhlig2019-09-17
|
* implemented MEM_VFREEToni Uhlig2019-09-17
|
* added newlines to seperate operations and writeback mechanism, added ↵Toni Uhlig2019-09-16
| | | | MEM_VALLOC operation
* prefixed alloc, free and unlink to prevent naming collision and added ↵Toni Uhlig2019-09-16
| | | | missing implementation debug message
* VAD Unlink test, currently not working as expectedToni Uhlig2019-09-15
|
* fixed invalid KeProtectVirtualMemory call (have: PEP, wanted: PROC_HANDLE)Toni Uhlig2019-09-08
|
* export process memory allocationa and vad testToni Uhlig2019-09-07
|
* * moved KDBG to KMemDriver.hToni Uhlig2019-08-23
| | | | | * moved GetPages, GetModules to Memory.c * moved VAD routines to VAD.c
* exported KMemDriver virt mem related functions to an extra moduleToni Uhlig2019-08-20
|
* KMemdriver GetModules for 32 bit target processesToni Uhlig2019-08-03
|
* project structure refactoringToni Uhlig2019-07-07
|
* httplib; simple web interface; moved KInterface.h to include/Toni Uhlig2019-07-02
|
* alloc non cached memory (dynamic mem) and find VAD ptr worksToni Uhlig2019-06-21
|
* Blackbone VAD stuff: VADFindNodeOrParent, VADFindToni Uhlig2019-06-15
| | | | read VAD AVL tree during UpdatePPEPIfRequired
* added MiFindNodeOrParent from BlackBoneToni Uhlig2019-06-13
|
* added some verified VAD structures + native offset enumToni Uhlig2019-06-12
|
* get VAD root for win10 1803Toni Uhlig2019-06-10
|
* initial commitToni Uhlig2019-05-07
Powered by cgit, Themed by Ted Yin.