jay
jay
Use GVA in ShHandleEptViolation to find hookinfo, which should actually be found using GPA. For example, if you use the function of mdl to remap VA in the guest, you...
Hi, I want to encrypt zip file, I use zip_stream_open instead of zip_open. And use zip_stream_copy to get the buffer, encrypt it and write it to the file. Is there...
Hello, is there any way to find the address of the API? Just like x64dbgpy/pluginsdk/_scriptapi_module.h
page out
hello kc, 应用层内容容易出现页面换出的问题,使得受保护的va被重新映射到不同pa之中。然而vt监控的只是pa。如何让应用层内存不被换出,且一直是有效(不被释放)是个难点。