Skip to content

3a1/hide-imports

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
example
example
 
 
include
include
 
 
README.md
README.md
 
 

Repository files navigation

hide-imports

Features

  • Written in C
  • Supports both 32-bit and 64-bit
  • Supports both Unicode and Multi-Byte Character Set
  • Manual mode that allows achieve zero imports
  • Function address is fetched only once, then retrieved from the list thereafter

Usage

CALL("DbgPrint", 1, "DbgPrint Test\n");

Driver example

IDA imports view

(MANUAL_MODE disabled):

(MANUAL_MODE enabled):

Manual mode requires you to obtain the address of MmGetSystemRoutineAddress manually, for example, by passing the address in mapping parameters from user mode.

About

A C library for dynamically resolving imports in Windows kernel drivers

Resources

Readme
Activity

Stars

2 stars

Watchers

2 watching

Forks

3 forks
Report repository

Contributors 2

  •  
  •  

Languages