Skip to content
/ modmap Public
forked from btbd/modmap

Module extending manual mapper

1 star 99 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

pieewiee/modmap

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
Controller
Controller
 
 
OwnDriver
OwnDriver
 
 
.gitignore
.gitignore
 
 
DvlErrLog.txt
DvlErrLog.txt
 
 
README.md
README.md
 
 

Repository files navigation

Module Extending Manual Mapper

DLL manual mapper that will forcefully extend the size of a pre-existing module and map itself there.

Procedure

  1. Pick a module.
  2. If there will be no conflicts, forcefully allocate memory immediately after the module's end.
  3. Extend the size of the module in its LDR entry to match.
  4. Map the DLL into this created region.

changes

  1. Updated patterns for MiAllocateVad, MiInsertVadCharges, MiInsertVad (compatible with Windows 11 23H2 build: 22631)
  2. Updated structs for MMVAD and MMVAD_FLAGS for windows 11
  3. Driver now uses IOCTL instead of EnumerateDebuggingDevicesOriginal (yeah i know)

Usage

  1. Load the driver
  2. change the proccess module and dll in the source code
  3. modmap
    • For example: modmap

Note

This was only tested on Windows 11 23H2 and it will only work with that version

todo

  • fix shellcode execution

About

Module extending manual mapper

Resources

Readme
Activity

Stars

1 star

Watchers

0 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • C 61.0%
  • C++ 39.0%