Update README.md

merge-requests/1/head
xerox 5 years ago
parent 65f030278a
commit df294a23d0

@ -28,8 +28,7 @@ If you are in any sort of doubt about the abundance of these drivers simply go t
### How does this exploit work? ### How does this exploit work?
Since we are able to read/write to any physical memory on the system the goal is to find the physical page of a syscall and map it into our system. This can be done by Since we are able to read/write to any physical memory on the system the goal is to find the physical page of a syscall and map it into our system. This can be done by calculating the offset into the page in which the syscall resides. Doing so is trivial and only requires the modulus operation.
calculating the offset into the page in which the syscall resides. Doing so is trival and only requires the modulus operation.
```cpp ```cpp
auto syscall_page_offet = rva % 0x1000; auto syscall_page_offet = rva % 0x1000;

Loading…
Cancel
Save