dscdo
dscdo
Hmm firstly what's meaning of gfn and how we can catch all symbol execution? Is there a way to monitor all syscall events? (after i can convert it to symbol...
Yes it's working but with some symbol(Process create or delete file) i cant get result @Wenzel
If we find a way to watch/save all syscall without symboll adress the problem will be solved. I look at drakvuf but a little complicated to examine in a short...
Yes i understand but i cant find logical way to do it with python module
My main goal is understand the system. So that tracing all syscall from vm is my personel homework 😄 After that with rip adress, i can convert they to function...