Git Product home page Git Product logo

ksdumper-11's Introduction

KsDumper-11

KsDumper

Demo ^New Demo gif comming soon

Features

  • Auto dumping of selected exe.
  • Auto Refresh (every 100ms)
  • Suspend, resume, kill process
  • Dump any process main module using a kernel driver (both x86 and x64)
  • Rebuild PE32/PE64 header and sections
  • Works on protected system processes & processes with stripped handles (anti-cheats)
  • Works on WINDOWS 11, it doesnt crash anymore! Dev Channel Insider Build Win 11 Ksdumper

Note: Import table isn't rebuilt.

Usage

The old way of loading the unsigned ksDumper.sys kernel driver was to use the capcom exploit to map it, this got patched in windows 11. This one loads the driver with Kernel Driver Utility, or KDU for short. I could not get the main fork of the program to work when being built from source.

This one does though. https://github.com/morelli690/KDU_kernel_bypass_/blob/master/Bin/kdu.exe

All driver loading is now automated, i plan on putting in a splash screen till the driver loads. For now, the client wont open until the driver has been loaded, if it fails, it exits. I tried to build a logger to output kdu's console output to a file, however it writes black always. Known issue

Note: The driver stays loaded until you reboot, so if you close KsDumper11.exe, you can just reopen it !
Note2: Even though it can dump both x86 & x64 processes, this has to run on x64 Windows.

Disclaimer

This project has been made available for informational and educational purposes only. The driver source is not included because i couldnt ever get it to compile on my system. The source can be found on the original reop. Considering the nature of this project, it is highly recommended to run it in a Virtual Environment. I am not responsible for any crash or damage that could happen to your system.

Important: This tool makes no attempt at hiding itself. If you target protected games, the anti-cheat might flag this as a cheat and ban you after a while. Use a Virtual Environment !

References

Compile Yourself

  • Requires Visual Studio 2022
  • Requires .NET 4.8

ksdumper-11's People

Contributors

mastercodeon314 avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.