ntint Newbie cheater Reputation: 0
Joined: 29 May 2017 Posts: 11
|
Posted: Mon Jun 11, 2018 10:24 am Post subject: Memory Shadowing via DBVM |
|
|
Hi,
I was wondering, whether DBVM supports memory shadowing as in DdiMon on github using EPT? Basically, what I wanna do is hide code patches from the guest os, e.g. to patch the kernel or user mode apps without the guest knowing it. Whenever the guest os reads/writes from a virtual page containing code patches, access should be directed to the original, unpatched physical memory, but when the guest os executes code, access should be redirected to physical memory containing the code patches.
Is this possible with DBVM? If yes, could I please get some hints on what DBVM functions I would have to use to achieve this?
Thanks in advance.
|
|