Comments (6)
h33p
commented on July 24, 2024
Indeed it seems to be the case. I can not do any reverse engineering myself, but look around the windows kernel structures for more information. I am open to pull requests implementing an improved method of getting the names of processes.
from vmread.
commented on July 24, 2024
i got around this with module names instead of process names (A module name is going to have the full name so do memcmp with your 16 bytes of the process name in a look for the modules
as you can see on the left you have names cut off at 16, and on the right names surpassing 16 in length. (newest version of flush(my tool) has it working on both sides this is an old SS)
sorry bad english, from china with virus
from vmread.
LWSS
commented on July 24, 2024
cool thanks for sharing
from vmread.
h33p
commented on July 24, 2024
i got around this with module names instead of process names (A module name is going to have the full name so do memcmp with your 16 bytes of the process name in a look for the modules
as you can see on the left you have names cut off at 16, and on the right names surpassing 16 in length. (newest version of flush(my tool) has it working on both sides this is an old SS)
sorry bad english, from china with virus
Nice tool and a great solution! A way without memcmp would be to find the module with the same base address as the process.
from vmread.
commented on July 24, 2024
smart!
link <--- gunna fix this.
you should add me on discord i like this project alot and use it for many many things!
_xeroxz#7212
from vmread.
h33p
commented on July 24, 2024
Fixed in 3876c24
from vmread.
Related Issues (20)
- Kmod_External DeadlySignal HOT 2
- Windows 1909 update HOT 2
- Host and Guest crash HOT 2
- User mode -> VM -> User mode HOT 3
- Initialization Error 3 HOT 8
- dirBase changed at runtime HOT 4
- Infinite loop regression. HOT 2
- what's MODE_DMA for? HOT 1
- Not an actual issue. HOT 3
- Kernel 5.6.2+ HOT 3
- Initialization error 8 on version 2004 HOT 11
- Kmod does not compile on Kernel 5.7+ HOT 1
- Project maintenance HOT 4
- delete me HOT 1
- Initialization error: -1
- Linux 5.8 changes HOT 2
- Pattern search can't handle multiple ?? regions HOT 1
- Further 1903 Compatibility Issues HOT 2
- Support for modules of System process HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from vmread.