xerox
|
cef765b7af
|
cleaned the code a little
|
4 years ago |
xerox
|
c4e6cbbd17
|
tracking all mapped memory, CloseHandle!
|
4 years ago |
xerox
|
64c8b1c22d
|
Update main.cpp
|
4 years ago |
xerox
|
4b8828a1f6
|
Update main.cpp
|
4 years ago |
xerox
|
43eb9688cf
|
major issues have been found and fixed............
|
4 years ago |
xerox
|
bf0912d462
|
fixed major issues with finding the correct page
|
4 years ago |
xerox
|
0c884f5a78
|
Update main.cpp
|
4 years ago |
xerox
|
71557ef62d
|
- added loadup.hpp
- changed examples
- changed code to use gdrv by default since physmem64.sys doesnt work on
windows 10 - 2004
|
4 years ago |
xerox
|
169e06a089
|
fixed dbg prints and cleaned some code up.
|
4 years ago |
xerox
|
fbce69c77e
|
- fixed blue screen issues with NtShutdownSystem
- kernel_ctx is now singleton, thus allowing many kernel_ctx's.
|
4 years ago |
xerox
|
6e35a0cc7e
|
changed ntoskrnl function that we hook to `NtShutdownSystem`
|
4 years ago |
xerox
|
10a28f2706
|
hooking NtSystemShutdown since it almost never gets called lol
|
4 years ago |
xerox
|
afd4c7219b
|
Merge branch 'master' of https://githacks.org/xerox/physmeme
|
4 years ago |
xerox
|
8404b66d39
|
V1.1 added support to zero driver's pe header.
|
4 years ago |
xerox
|
74b9811b49
|
Update main.cpp
|
4 years ago |
xerox
|
5d8fb3f10d
|
V1.0 baby! :)
|
4 years ago |