Login
From:
Boschko Security Blog
(Uncensored)
subscribe
Dynamically Retrieving System Calls Leveraging PTEs
https://boschko.ca/dynamically-obtain-syscall-id/
links
backlinks
Tagged with:
windows internal
Roast topics
Find topics
Find it!
Locate instantiated PTE by leaking the base address and dynamically using read primitive to retrieve the syscall id.
