xerox
|
efe9fd48c8
|
cleaned some code
|
4 years ago |
|
xerox
|
48e3357155
|
sometimes the gdrv returns an invalid virtual address that is 1 page
ahead of the actual mapping... added a try/catch around memcmp
|
4 years ago |
|
_xeroxz
|
eb768dda0c
|
Revert "fixed an issue where only *sometimes* the driver would return an invalid"
This reverts commit c960f3c60e
|
4 years ago |
|
xerox
|
c960f3c60e
|
fixed an issue where only *sometimes* the driver would return an invalid
address (Added a try/catch)
|
4 years ago |
|
xerox
|
cef765b7af
|
cleaned the code a little
|
4 years ago |
xerox
|
c4e6cbbd17
|
tracking all mapped memory, CloseHandle!
|
4 years ago |
|
xerox
|
64c8b1c22d
|
Update main.cpp
|
4 years ago |
|
xerox
|
4b8828a1f6
|
Update main.cpp
|
4 years ago |
|
xerox
|
43eb9688cf
|
major issues have been found and fixed............
|
4 years ago |
|
xerox
|
bf0912d462
|
fixed major issues with finding the correct page
|
4 years ago |
|
xerox
|
0c884f5a78
|
Update main.cpp
|
4 years ago |
|
xerox
|
71557ef62d
|
- added loadup.hpp
- changed examples
- changed code to use gdrv by default since physmem64.sys doesnt work on
windows 10 - 2004
|
4 years ago |
|
xerox
|
169e06a089
|
fixed dbg prints and cleaned some code up.
|
4 years ago |
|
xerox
|
fbce69c77e
|
- fixed blue screen issues with NtShutdownSystem
- kernel_ctx is now singleton, thus allowing many kernel_ctx's.
|
4 years ago |
|
xerox
|
6e35a0cc7e
|
changed ntoskrnl function that we hook to `NtShutdownSystem`
|
4 years ago |
|
xerox
|
10a28f2706
|
hooking NtSystemShutdown since it almost never gets called lol
|
4 years ago |
|
xerox
|
afd4c7219b
|
Merge branch 'master' of https://githacks.org/xerox/physmeme
|
4 years ago |
|
xerox
|
8404b66d39
|
V1.1 added support to zero driver's pe header.
|
4 years ago |
|
xerox
|
74b9811b49
|
Update main.cpp
|
4 years ago |
|
xerox
|
5d8fb3f10d
|
V1.0 baby! :)
|
4 years ago |
