Vulnerable Driver Manipulation
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
xerox 445ce88c7f
removed file
4 years ago
VDM v1.0 4 years ago
drivers removed file 4 years ago
LICENSE v1.0 4 years ago
README.md Update README.md 4 years ago
VDM.sln v1.0 4 years ago

README.md

Vulnerable Driver Manipulation

A library to manipulate drivers exposing a physical memory read/write primitive to allow the user to call any function in the kernel. There are thousands of drivers exposing physical memory read/write, a bunch are listed in this repo. Currently the project is using gdrv.sys, and is inline hooking NtShutdownSystem. The inline hook is not patchguard friendly, but is removed after every syscall into NtShutdownSystem to prevent possible detection.

Usage

Currently the project is configured to use gdrv, but if you want to swap the driver out you must defined four functions.