Kyle Zeng
Kyle Zeng
1. handle gadgets like ~~~ [ins] In [2]: chain.print_payload_code() chain = b"" chain += p32(0x809d9f7) # mov eax, dword ptr [esp + 4]; ret 0xc chain += p32(0x1010101) chain +=...
### Description currently, conditional instructions in arm will be misunderstood by vex/angr, thinking the instruction will always be executed, which is not true. the fix will be to correctly lift...
### Description segment registers have different name for i386, amd64 in archinfo, which is quite annoying specifically, in archinfo, i386 calls them normally like "cs", "ds", "es", "fs", "gs", "ss",...
### Description Somehow test_cat_stderr (test_dockertarget_simple.TestDockerTargetSimple) is flaky and it can block archr CI sometimes. It might be an issue in the test itself or something wrong with the docker target....
I receive the following error when trying to use the project on Linux v6.5.0, which is Ubuntu's kernel. ```$ ./vmlinux-to-elf ./vmlinuz-6.5.0-17-generic vmlinux [+] Kernel successfully decompressed in-memory (the offsets that...
### GEF+GDB version ```shell gef: latest main branch: ed10244b0fe4665e8ee03fa326b1b1c711b39563 gdb: Ubuntu 15.0.50.20240403-0ubuntu1 ``` ### Operating System Ubuntu 24.04 ### Describe the issue you encountered when attaching to a linux qemu,...
### Description `proj.loader.memory.find(b'\x00'*8)` works properly but fails when giving `search_min` and `search_max` parameters like this: `proj.loader.memory.find(b'\x00'*8, search_min=seg.min_addr, search_max=seg.max_addr)` reproduce: ~~~ In [19]: proj = angr.Project("/bin/ls") In [20]: seg = [...
Reproduce: ``` [ins] In [1]: from pwn import * [ins] In [2]: ELF('ALLSTAR_aplus-fsf-el_libMSTypes.so.0.0.0') Aborted (core dumped) ``` where the binary is from `https://allstar.jhuapl.edu/repo/p1/amd64/aplus-fsf/libMSTypes.so.0.0.0` The coredump suggests this is a libunicorn...
forgot to add my stuff as promised :P