bigbigbanana

Hi,Wenzel! I use the original Nitro project and I get the following result!I don't know the meaning of Syscall trapped key and Sysret trapped key,could you tell me?And why the...

Hello,i want to improve the performance of vm,so i put syscall event in a queue,then i use a thread to do backend,but it can only get syscall information of swapper...

Yes,Nitro running faster with my thread and queue.How can i keep memory access consistent when use one thread get event and one thread backend event?

Hello,i want to know in addition to matching the PGD with the CR3 register, is there any other way to find the process that currently generates the system call?I want...

When i run ./main.py --nobackend win7,it reports errors,how can i fix it? 

And after i install libvmi,then i run ./main.py --nobackend win7,it still exits errors. 

For the question exists in the first picture i uploaded,did it means i should install libvmi and then i can run ./main.py --nobackend win7?

But i have installed gcc,am i lack of other packages? 

I have solved the above questions by installing libvmi used in nitro,thank you for your suggestions!But i have a question,the rax register stores syscall number,but in th picture,i found 0x1002,0x10162...

When i run ./main.py win7,there exists some errors,what's wrong with it?