Elias Bachaalany
Elias Bachaalany
@joemikhailgwu which Calculator? The Windows 10 modern application usually found here: `C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe`?
I have not tried your case exactly but I suspect the problem is that when `patch_imports` is used, then LIEF hardcodes the addresses to the import stubs w/o adding proper...
I have checked the source code of the imports patcher and I see no sign for relocation adding for the import trampoline pointers. If I have time, I might fix...
Back in the old days, we used to hook `explorer.exe` (with the assumption that it is the parent of most processes). When a user runs a program, it will also...
Hey guys, you might find this helpful, let me know: https://github.com/0xeb/detours-cmake
You are completely right in your arguments. The code was hard to work with. I had to read it and clean it up first. Then I squeezed in IDA 7.5+...
Correct. The exported types (into a header file) should be first sorted from the ones with least dependencies to the ones with most dependencies. Then emitted. Or just forward declare...
Sorry, I did not get you fully, so what did you decide? """But I don't think it's worth complexifying the implementation just for these two reasons.""" So, here's the issue:...
Yes, thank you. Much clearer now. IMHO, if we keep the UI / Console output as is (no reordering) then no clutter (due to us reordering / forward decl). Why...
If I know Rust, I would contributed btw ;)