i just want to confirm ioctlpus.exe if attack ctlcode to get correct buffer size, it was sucessful
dbgview64 crash when loading driver---------------------------->can u give me answer ?
but windbg print text:
DBGHELP: 66297948560b4d1391e786d9de382d13 - public symbols
C:\Users\Pudge\Desktop\symbols\66297948560b4d1391e786d9de382d13.pdb - unmatched
Hello, World!
[<] Loading vulnerable driver, Name: QWCNqyesrPck
[+] NtLoadDriver Status 0x0
[+] dvice handle is 00000000000001D4 // wasted my time
[+] Image base has been allocated at 0xFFFFCC8445FF9000
[+] Skipped 0x1000 bytes of PE Header
[+] Fixing stack cookie
[<] Calling DriverEntry 0xFFFFCC8445FFD000
[+] Callback example called
[+] DriverEntry returned 0x0
[<] Unloading vulnerable driver
[+] NtUnloadDriver Status 0x0
[+] Vul driver data destroyed before unlink
[+] success
when i use kdmapper all was fine
i just want to confirm ioctlpus.exe if attack ctlcode to get correct buffer size, it was sucessful
dbgview64 crash when loading driver---------------------------->can u give me answer ?
but windbg print text:
DBGHELP: 66297948560b4d1391e786d9de382d13 - public symbols
C:\Users\Pudge\Desktop\symbols\66297948560b4d1391e786d9de382d13.pdb - unmatched
Hello, World!
[<] Loading vulnerable driver, Name: QWCNqyesrPck
[+] NtLoadDriver Status 0x0
[+] dvice handle is 00000000000001D4 // wasted my time
[+] Image base has been allocated at 0xFFFFCC8445FF9000
[+] Skipped 0x1000 bytes of PE Header
[+] Fixing stack cookie
[<] Calling DriverEntry 0xFFFFCC8445FFD000
[+] Callback example called
[+] DriverEntry returned 0x0
[<] Unloading vulnerable driver
[+] NtUnloadDriver Status 0x0
[+] Vul driver data destroyed before unlink
[+] success
when i use kdmapper all was fine