Hi,
I'm currently working on a project to help the analysis of malware from inside the kernel to avoid any kind of detection.
So I need to be able to read the process memory from my kernel module.
As of now, I'm stuck at converting a virtual memory address (for example 0x080483e8 found with gdb) to a kernel readable address.
I have found a way to track this address down to a page and then find the physical address of this page, but I get kernel oops every time I try to access it.
I have been reading and googling for days and I can't find the answer..
Thanks for you help !