Skip to content
/ rwmem Public
forked from osresearch/rwmem

Read and write physical memory on OS X

0 stars 19 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

bpmilne/rwmem

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
.gitignore
.gitignore
 
 
DirectHW.c
DirectHW.c
 
 
DirectHW.dmg
DirectHW.dmg
 
 
DirectHW.h
DirectHW.h
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
rdmem.c
rdmem.c
 
 
wrmem.c
wrmem.c
 
 

Repository files navigation

Dangerous Software! Read and Write physical memory on OS X

This can WILL crash your machine!

  • No safety checks
  • No validation of content
  • No restrictions on where things are written (other than SMM, etc)
  • No warranty

The purpose of this tool is to read and write physical memory addresses of the running system. It is possible to crash the machine by writing to arbitrary pages, corrupt the kernel, mess up memory mappings, etc. It is not recommended for novice users. This is probably not the chainsaw/sledgehammer/atomic-bomb that you're looking for.

Loading the DirectHW.kext gives any root process the ability to poke anywhere on the system. It is basically a deliberate backdoor in the kernel. You can download it from Snare's site, if you trust him more than the one bundled in this repository: http://ho.ax/downloads/DirectHW.dmg

Usage

Read your machine's serial number:

sudo ./rdmem 0xffffff00 256 | xxd -g 1

About

Read and write physical memory on OS X

Resources

Readme
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • C 98.1%
  • Makefile 1.9%