Skip to content

Safe memory#13

Open
SergejLo82 wants to merge 3 commits intoSamuelTulach:mainfrom
SergejLo82:safe-memory
Open

Safe memory#13
SergejLo82 wants to merge 3 commits intoSamuelTulach:mainfrom
SergejLo82:safe-memory

Conversation

@SergejLo82
Copy link
Contributor

@SergejLo82 SergejLo82 commented Mar 2, 2025

@Zi-kiki
Copy link

Zi-kiki commented Jul 23, 2025

After testing, it can indeed effectively avoid BSOD, but with the modified reading method, there is a high probability that it cannot obtain the physical address when reading processes with kernel anti-cheat protection, ultimately leading to read failures. STATUS_NOT_FOUND

@SergejLo82
Copy link
Contributor Author

SergejLo82 commented Aug 8, 2025

After testing, it can indeed effectively avoid BSOD, but with the modified reading method, there is a high probability that it cannot obtain the physical address when reading processes with kernel anti-cheat protection, ultimately leading to read failures. STATUS_NOT_FOUND

Intercept mov cr3, to get the real cr3 of the game

@Zi-kiki
Copy link

Zi-kiki commented Aug 9, 2025

I tried to traverse mmpfn to get the real cr3, but this process is very time-consuming, especially under vmExit, the system interruption time is too long, and finally WATCHDOG blue screen or automatic restart. Can you explain the principle of obtaining real cr3 by intercepting cr3? I don't quite understand it.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@SergejLo82 @Zi-kiki