Tapping into the potential of Memory Dump Emulation

hugsy | | Category: research | Tags: windows, hack, memory-dump, wtf, bochscpu, bochs, emulation

This post summarizes some of the work I've been doing for the past few months during my (few) off times. Nothing new, mostly just a structured reminder for my later self. Introduction What-The-Fuzz is one of my favorite tools, and beyond the tool...

Section Objects as Kernel/User communication mode

hugsy | | Category: research | Tags: windows, hack, memory-manager

I've recently decided to read cover to cover some Windows Internals books, and currently reading the amazing book "What Makes It Page", it gave me some ideas to play with Section Objects as they covered in great details. One thought that occurred...