From 5a82cc2efdd5664f996607c2a4dc0fe78be17946 Mon Sep 17 00:00:00 2001 From: _xeroxz Date: Sun, 1 Nov 2020 23:11:56 +0000 Subject: [PATCH] Update README.md --- README.md | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/README.md b/README.md index f99b899..c456436 100644 --- a/README.md +++ b/README.md @@ -6,8 +6,9 @@ # Vulnerable Driver Manipulation -A library to manipulate driver exposing a physical read/write primitive to allow the user to call any function in the kernel. There are thousands of drivers exposing physical -memory read/write, a bunch are listed in this repo. +A library to manipulate drivers exposing a physical memory read/write primitive to allow the user to call any function in the kernel. There are thousands of drivers exposing physical +memory read/write, a bunch are listed in this repo. Currently the project is using gdrv.sys, and is inline hooking NtShutdownSystem. The inline hook is not patchguard friendly, +but is removed after every syscall into NtShutdownSystem to prevent possible detection. # Usage