a2x/memflow-winio

memflow-winio

A memflow connector that exploits the vulnerable EneTechIo (WinIo) driver in Thermaltake's TOUGHRAM software (version 1.0.3), which can be found here.

Building the Stand-alone Connector for Dynamic Loading

To compile a dynamic library for use with the connector inventory, use the following command:

cargo build --release

Alternatively, you can install it using memflowup:

1. Install memflowup:

   cargo install --git https://github.com/memflow/memflowup

2. Build the connector:

   memflowup build https://github.com/a2x/memflow-winio

Statically Linking the Connector in a Rust Project

To statically link the connector in your Rust project, first add the following dependency to your Cargo.toml:

memflow-winio = { git = "https://github.com/a2x/memflow-winio" }

After adding the dependency, you can create a new connector instance like this:

use memflow::prelude::v1::*;
use memflow_win32::prelude::v1::*;

fn main() -> Result<()> {
    let connector = memflow_winio::create_connector(&Default::default())?;

    let mut kernel = Win32Kernel::builder(connector)
        .build_default_caches()
        .build()?;

    let process = kernel.process_by_name("explorer.exe")?;

    println!("{:#?}", process.info());

    Ok(())
}