RepoMirrors/mimikatz
1
0
Fork 0
mirror of https://github.com/gentilkiwi/mimikatz synced 2024-12-13 09:35:18 +00:00
Code Issues Packages Projects Releases Wiki Activity
6436bbe7bc
mimikatz/modules/kull_m_patch.h
Benjamin DELPY b008188f9f Big update :) 
[new] mimikatz & mimilib **very** experimental support for ARM64
[better] code for Mifare protocol
[better] code for sekurlsa WinDBG plugin (credential keys, still not good enough)
[new] mimilib sub authentication package for @vletoux with 'bad password knocking' and magic password
[new] mimikatz: unmarshalling usernames when marshalled
[fix] mimikatz SR98/RDM/Busylight could previously crash
[fix #184] again and again ;)
[fix #172] swscanf_s VS ARRAYSIZE macro
[fix #127] stdout/stdin/stderr vs modern Visual Studio and Windows XP support (thank you @Crypt0-M3lon)
[code] refactor for defined / !defined
2019-03-25 01:57:56 +01:00

79 lines
2.1 KiB
C
Raw Blame History

/* Benjamin DELPY `gentilkiwi`
http://blog.gentilkiwi.com
benjamin@gentilkiwi.com
Licence : https://creativecommons.org/licenses/by/4.0/
*/
#pragma once
#include "kull_m_memory.h"
#include "kull_m_service.h"
#include "kull_m_process.h"
typedef NTSTATUS (* PKULL_M_PATCH_CALLBACK) (int argc, wchar_t * args[]);
typedef struct _KULL_M_PATCH_PATTERN {
DWORD Length;
BYTE *Pattern;
} KULL_M_PATCH_PATTERN, *PKULL_M_PATCH_PATTERN;
typedef struct _KULL_M_PATCH_OFFSETS {
LONG off0;
#if defined(_M_ARM64)
LONG armOff0;
#endif
LONG off1;
#if defined(_M_ARM64)
LONG armOff1;
#endif
LONG off2;
#if defined(_M_ARM64)
LONG armOff2;
#endif
LONG off3;
#if defined(_M_ARM64)
LONG armOff3;
#endif
LONG off4;
#if defined(_M_ARM64)
LONG armOff4;
#endif
LONG off5;
#if defined(_M_ARM64)
LONG armOff5;
#endif
LONG off6;
#if defined(_M_ARM64)
LONG armOff6;
#endif
LONG off7;
#if defined(_M_ARM64)
LONG armOff7;
#endif
LONG off8;
#if defined(_M_ARM64)
LONG armOff8;
#endif
LONG off9;
#if defined(_M_ARM64)
LONG armOff9;
#endif
} KULL_M_PATCH_OFFSETS, *PKULL_M_PATCH_OFFSETS;
typedef struct _KULL_M_PATCH_GENERIC {
DWORD MinBuildNumber;
KULL_M_PATCH_PATTERN Search;
KULL_M_PATCH_PATTERN Patch;
KULL_M_PATCH_OFFSETS Offsets;
} KULL_M_PATCH_GENERIC, *PKULL_M_PATCH_GENERIC;
typedef struct _KULL_M_PATCH_MULTIPLE {
KULL_M_PATCH_PATTERN Search;
KULL_M_PATCH_PATTERN Patch;
LONG Offset;
KULL_M_MEMORY_ADDRESS AdressOfPatch;
DWORD OldProtect;
KULL_M_MEMORY_ADDRESS LocalBackup;
} KULL_M_PATCH_MULTIPLE, *PKULL_M_PATCH_MULTIPLE;
BOOL kull_m_patch(PKULL_M_MEMORY_SEARCH sMemory, PKULL_M_MEMORY_ADDRESS pPattern, SIZE_T szPattern, PKULL_M_MEMORY_ADDRESS pPatch, SIZE_T szPatch, LONG offsetOfPatch, PKULL_M_PATCH_CALLBACK pCallBackBeforeRestore, int argc, wchar_t * args[], NTSTATUS * pRetCallBack);
PKULL_M_PATCH_GENERIC kull_m_patch_getGenericFromBuild(PKULL_M_PATCH_GENERIC generics, SIZE_T cbGenerics, DWORD BuildNumber);
BOOL kull_m_patch_genericProcessOrServiceFromBuild(PKULL_M_PATCH_GENERIC generics, SIZE_T cbGenerics, PCWSTR processOrService, PCWSTR moduleName, BOOL isService);
Reference in New Issue View Git Blame Copy Permalink