Skip to content

johnsonjason/KeProcessOverlay

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

33 Commits
src
src
 
 
README.md
README.md
 
 
example.c
example.c
 
 

Repository files navigation

KeProcessOverlay

These are just functions that make writing/reading memory in a different process a lot easier, it's by common means using KeStackAttachProcess to attach a kernel mode thread to a usermode address space and then using an MDL and setting the protection rights with MmProtectMdlSystemAddress, this just shortens the code. Uses RtlCopyMemory to read/write memory

About

Reading/writing memory from kernel-mode

Resources

Readme
Activity

Stars

21 stars

Watchers

2 watching

Forks

9 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages