metasploit-framework

https://github.com/rapid7/metasploit-framework

Ruby

Metasploit Framework

Rex::Payloads::Win32::Kernel::Common.find_nt_kdversionblock

Returns a stub that will find the base address of ntoskrnl and
place it in eax.  This method uses a pointer found in KdVersionBlock.

Source | Google | Stack overflow

Edit

git clone [email protected]:rapid7/metasploit-framework.git
cd metasploit-framework
open lib/rex/payloads/win32/kernel/common.rb

Contribute

# Make a new branch
git checkout -b -your-name--update-docs-Rex--Payloads--Win32--Kernel--Common-find_nt_kdversionblock-for-pr

# Commit to git
git add lib/rex/payloads/win32/kernel/common.rbgit commit -m "better docs for Rex::Payloads::Win32::Kernel::Common.find_nt_kdversionblock"

# Open pull request
gem install hub # on a mac you can `brew install hub`
hub fork
git push <your name> -your-name--update-docs-Rex--Payloads--Win32--Kernel--Common-find_nt_kdversionblock-for-pr
hub pull-request

# Celebrate!