CiOptions: Simplifies the way CI.dll base address is recovered

Instead of using the kernel R/W primitive, uses userland API to enumerate kernel modules
2026-06-11 01:41:20 +00:00 · 2023-10-09 16:29:19 +02:00
parent 0a817fea93
commit 7590a11389
6 changed files with 42 additions and 31 deletions
@@ -724,7 +724,7 @@ Other options:\n\
                        DWORD64 g_CiOptionsAddress = 0;
                        if (IsCiEnabled())
                        {
-                            CiBaseAddress = FindCIBaseAddress(verbose);
+                            CiBaseAddress = FindCIBaseAddress();
                            if (!CiBaseAddress) {
                                _putts_or_not(TEXT("[-] CI base address not found !\n"));
                            }