h4b4n3r0
Hello everybody, after I gave my master's thesis talk about CodeMon my professors would like that I make a paper out of it. For this they want to provide me...
I reuse some code of the ipt / memdump plugin (@icedevml) and encountered a strange problem, when monitoring firefox. To ensure this is not a problem of my code, I...
Hi together, I'm currently wondering how breakpoint_by_pid_searcher works. At first access_context_t ctx is set up. Especially I'm confused, why uses ' .addr = info->regs->rsp' i.e. the stack pointer? What can...
Hey guys, I've been reading the help text of drakvuf and came accross multiple flags of which I'm not exactly sure about. I tried to find more about but for...
I saw this bug when trying out if it is possible to inject a binary from the host system to the guest system: (see #1017). The last line says "Process...
Hey guys, When tracing syscalls I noticed for the NtAllocateVirtualMemory, that the Protect Value is not derived in a consistent format. Sometimes the value "0x4" (PAGE_READWRITE) is retuned and sometimes...
It would be amazing, if the summary feature could provide a option that allows to include entire sections instead of paragraphs only Maybe you could point me to the files...
For some reason code blocks next to the tag, even in the same section are not included in the summary. Could you please fix this or maybe point me to...
It would be very interesting to be informed via email when one receives a notification. most importantly colleagues are immediately informed when reports / sections are assigned to them Further...