Skip to content

3a1/hide-imports

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
example
example
 
 
include
include
 
 
README.md
README.md
 
 

Repository files navigation

hide-imports

Features

  • Written in C
  • Supports both 32-bit and 64-bit
  • Supports both Unicode and Multi-Byte Character Set
  • Manual mode that allows achieve zero imports
  • Function address is fetched only once, then retrieved from the list thereafter

Usage

CALL("DbgPrint", 1, "DbgPrint Test\n");

Driver example

IDA imports view

(MANUAL_MODE disabled):

(MANUAL_MODE enabled):

Manual mode requires you to obtain the address of MmGetSystemRoutineAddress manually, for example, by passing the address in mapping parameters from user mode.

About

dynamically resolve imports in kernel driver

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages