Skip to content
/ krnl-shm-comm Public

Covert kernel-to-usermode communication channel implemented via shared memory, hidden using DKOM (Direct Kernel Object Manipulation).

10 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

nevergiveupcpp/krnl-shm-comm

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
client
client
 
 
driver
driver
 
 
images
images
 
 
shared
shared
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 

Repository files navigation

krnl-shm-comm

Covert kernel-to-usermode communication channel implemented via shared memory, hidden using DKOM (Direct Kernel Object Manipulation).

Proof of Concept

Windows Object Manager Manipulation via DKOM

Disclaimer

All actions were carried out solely for the purpose of studying defensive systems and testing the functionality and effectiveness of the methods described. I strongly condemn any interference with someone else's process!

Credits

KDmapper

About

Covert kernel-to-usermode communication channel implemented via shared memory, hidden using DKOM (Direct Kernel Object Manipulation).

Topics

communication poc shared-memory object-manager hidden-object shared-memory-communication km-um kernelmode-usermode windows-object-manager hidden-system-thread hidden-memory

Resources

Readme
Activity

Stars

10 stars

Watchers

0 watching

Forks

2 forks
Report repository

Languages