Skip to content

rft0/km-dll-mapper

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Kernel Mode DLL Manual Mapper (KMDMM)

DLL Manual Mapper that uses windows kernel api methods to manipulate memory, change memory region rights etc
This program doesn't create any threads instead it walk through remote process's IAT table and hooks a frequently
used function for shellcode execution.\

src/km -> Kernelmode driver
src/um -> Usermode program

Kernelmode DLL Manual Mapper

Build Requirements:

  • Python 3+
  • MSVC
  • WDK

Building

  • In build.bat, set WDK_INC, WDK_LIB and VS_PATH depending on your setup.
  • Run following command to build kernelmode driver and generate its byte array.
.\build km bytes
  • Run following command to build usermode program.
.\build.bat um
  • Binary files for both driver and program is in /bin folder.