GitHub - johnsonjason/KeProcessOverlay: Reading/writing memory from kernel-mode · GitHub
Skip to content

johnsonjason/KeProcessOverlay

Folders and files

Repository files navigation

KeProcessOverlay

These are just functions that make writing/reading memory in a different process a lot easier, it's by common means using KeStackAttachProcess to attach a kernel mode thread to a usermode address space and then using an MDL and setting the protection rights with MmProtectMdlSystemAddress, this just shortens the code. Uses RtlCopyMemory to read/write memory

About

Reading/writing memory from kernel-mode

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

Contributors

Languages