From e32e188119f8cd69d8e6795dbd163e993d46475b Mon Sep 17 00:00:00 2001
From: pe3zx <pe3zx@users.noreply.github.com>
Date: Sat, 21 Aug 2021 12:10:10 +0700
Subject: [PATCH] Add: TheCruZ/kdmapper to Execution section

---
 Offensive.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/Offensive.md b/Offensive.md
index 844d391..a2b681e 100644
--- a/Offensive.md
+++ b/Offensive.md
@@ -389,6 +389,10 @@ Some tools can be categorized in more than one category. But because the current
         <td><a href="https://github.com/snovvcrash/peas">snovvcrash/peas</a></td>
         <td>Modified version of PEAS client for offensive operations</td>
     </tr>
+    <tr>
+        <td><a href="https://github.com/TheCruZ/kdmapper">TheCruZ/kdmapper</a></td>
+        <td>KDMapper is a simple tool that exploits iqvw64e.sys Intel driver to manually map non-signed drivers in memory</td>
+    </tr>
     <tr>
         <td><a href="https://github.com/xforcered/InlineExecute-Assembly">xforcered/InlineExecute-Assembly</a></td>
         <td>InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditional fork and run execute-assembly module</td>