Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
D
D
Dutymy2021-07-22 04:09:07
C++ / C#
Dutymy, 2021-07-22 04:09:07

Is it possible to read physical addresses to RAM?

Hello, can I read the address space of a windows virtual machine from outside. That is, I would like wndows to be running in a virtual machine installed on kali Linux, and being outside, I could secretly collect memory dumps of virtualized windows. Since this is done for absolutely covert reading of the application's memory, obviously I will need to somehow identify the address space of the victim application on windows and compare it with the memory dump ... Has anyone done something similar))

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
1
15432, 2021-07-22
@Dutymy

Of course, enable debugging of the Windows kernel, connect to COM1 of the virtual machine, and you can read the memory of any application with the usual commands of the WinDbg debugger.

Similar questions
A
Archakov Dennis2016-07-10 15:15:53
Why doesn't Opera load MP3s in? 3Reply
R
Roma2016-01-20 19:39:41
Calculate the approximate value of the infinite sum up to e=0.0001? 2Reply
E
Elnurhan2020-06-14 19:24:46
Why is the string split when transmitted over the socket? 2Reply
A
Armen2016-01-21 13:19:00
How to store records from the VK wall? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question