This is kdmapper but it doesn't use ExAllocatePool instead it allocates pages to avoid being in BigPoolTable,

Overview

KDMapper without allocating memory in BigPoolTable

Original creator https://github.com/z175

Improved by https://github.com/TheCruZ

TheCruz has intergrated this into his github repo, I'm most likely not updating this repo so to always have an up-to-date version go to https://github.com/TheCruZ

run kdmapper.exe in admin CMD to see it's arguments, in order to not be in BigPoolsTable the argument is --mdl. If you want to free the allocated memory after execution use --free!

If you would like to use a GUI for kdmapper that shows you example entry point refer to https://www.unknowncheats.me/forum/anti-cheat-bypass/465064-kdmapper-gui-modified-version-allocates-pages-mdl.html

Please note I've taken the code from TheCruz and updated it so that it doesn't allocate any memory in the BigPoolTable (if --mdl argument is passed), if there is some code I could've written better please let me know since I'm always willing to improve. Please note that your mdl address is passed to the first argument of your driver entry so you can clean the pfn easily. Also credits to the original creator of kdmapper z175

please note TheCruz had merged my repo and improved the code, I then took this code and added a few more things to it. Tested from Windows 10 1607 to current Windows 11 22000 ✔️

Credits: z175, TheCruz

Owner
tygo lokum
tygo lokum
This is for interfacing rasberry-pi's (2 cards) with an arduino for sending raw data to form the close loop system to avoid motor heating by acting on a given temperature.

This is for interfacing rasberry-pi's (2 cards) with an arduino for sending raw data to form the close loop system to avoid motor heating by acting on a given temperature. Interface is explained through a master slave approach and client server approach. another camera is used with OPEN-CV platform to interface and collect data aswell.

Younes HAMZA 2 Oct 25, 2021
Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted file

Process Ghosting This is my implementation of the technique presented by Gabriel Landau: https://www.elastic.co/blog/process-ghosting-a-new-executable

hasherezade 470 Aug 7, 2022
Lee Thomason 293 Aug 8, 2022
SDR++ is a cross-platform and open source SDR software with the aim of being bloat free and simple to use.

SDR++ is a cross-platform and open source SDR software with the aim of being bloat free and simple to use.

AlexandreRouma 1.8k Aug 3, 2022
Formatted C++20 stdlib man pages (cppreference)

C++ stdlib man pages stdman is a tool that parses archived HTML files from cppreference and generates groff-formatted manual pages for Unix-based syst

Jeaye Wilkerson 838 Aug 6, 2022
Remap ELF LOAD segments to huge pages

Quick start Not recommended as a production solution, but it's a very fast way to benchmark if your application benefits from remapping your text and

null 15 Jun 29, 2022
Manual mapper that uses PTE manipulation, Virtual Address Descriptor (VAD) manipulation, and forceful memory allocation to hide executable pages. (VAD hide / NX bit swapping)

Stealthy Kernel-mode Injector Manual mapper that uses PTE manipulation, Virtual Address Descriptor (VAD) manipulation, and forceful memory allocation

Charlie Wolfe 87 Jul 22, 2022
INSTEAD interpreter for developers

instead-cli Trivial INSTEAD interpreter for developers. Build and run Dependencies: luajit (or lua), iconv. $ git clone https://github.com/instead-hub

INSTEAD 8 Apr 22, 2022
Phan Sang 8 Jul 30, 2022
This is an upgrade to the initial TerminalOS source, supporting real hardware other than just QEMU, using GRUB as a bootloader instead of the crappy one i wrote

Terminal OS Author: Maheswaran Date: 20th Nov 2021 PROGRESS Multiboot compilance achieved VGA driver from complete with print_hex, print_dec, printf f

Maheswaran Parameswaran 1 Nov 28, 2021
Patch for Titanfall 2 that helps prevent disconnects while the servers are being attacked by a DoS attack.

Titanfall2 DeltaBuf patch This patch for Titanfall 2 helps prevent disconnects while the servers are being attacked by a DoS attack. Disclaimer This i

null 6 Jul 30, 2022
Elk is a tiny embeddable JavaScript engine that implements a small but usable subset of ES6

Elk is a tiny embeddable JavaScript engine that implements a small but usable subset of ES6. It is designed for microcontroller development. Instead of writing firmware code in C/C++, Elk allows to develop in JavaScript. Another use case is providing customers with a secure, protected scripting environment for product customisation.

Cesanta Software 1.4k Jul 28, 2022
The Pizza Compass will determine your location and direct you to the nearest pizza place. It’s like a regular compass, but better!

Pizza_Compass A Particle project named Pizza_Compass Welcome to your project! Every new Particle project is composed of 3 important elements that you'

Joe Grand 66 Jul 25, 2022
libag - The famous The Silver Searcher, but library 📚

A few weeks ago, a friend asked me if I knew any tool for recursive regular expression search in text and binary files. Ag immediately came to my mind, but unfortunately, ag(1) is a program, not a library.

Davidson Francis 27 Jul 31, 2022
Pandex is a light but FAST programming language written in C . Pandex goal is that be hard & it's good for eductional goals

The Pandex programming language version 1.0.0.3 Pandex versions release type The Pandex version has four numbers. the first number holds 1 ( or 0 in s

null 8 May 23, 2022
Khepri is a Cross-platform agent, the architecture and usage like Coblat Strike but free and open-source.

Khepri Free,Open-Source,Cross-platform agent and Post-exploiton tool written in Golang and C++ Description Khepri is a Cross-platform agent, the archi

Young 1.3k Aug 10, 2022
Schedule Reader but it's written by C++

Schedule Reader 2.0 Automatically convert your excel schedule from your teacher to an iCalendar file that you can import into services like Google Cal

Asiimoviet 5 Nov 20, 2021
RISC-V has a 128-bit ISA that is fairly developed, but not standardized fully yet.

128-bit RISC-V assembler RISC-V has a 128-bit ISA that is fairly developed, but not standardized fully yet. I am maintaining a RISC-V userspace emulat

Alf-André Walla 36 May 18, 2022