Francesco Cagnin issues

Results 12 issues of


                                            Francesco Cagnin

Issues on High DPI Displays (e.g. Retina)

Some tutorials are not rendered correctly on High DPI displays, since these displays were not supported in the original project. Examples of what should be changed to fix this: -...

Fix name and return type of auto_queue_empty for IDA 7.0+

See https://github.com/vrtadmin/FIRST-plugin-ida/issues/14

Remove duplicate code

Lines [src.diff#L909](https://github.com/Winbagility/Winbagility/blob/master/src/VBoxPatch/src.diff#L909) and [src.diff#L911](https://github.com/Winbagility/Winbagility/blob/master/src/VBoxPatch/src.diff#L911).

Registers are sporadically not updated correctly

```python #!/usr/bin/env python2 # -*- coding: utf-8 -*- from PyFDP.FDP import FDP fdp = FDP("myvm"); RIP = 0x10 fdp.Pause() print(hex(fdp.ReadRegister(RIP))) fdp.WriteRegister(RIP, 0x42424242) print(hex(fdp.ReadRegister(RIP))) fdp.SingleStep() print(hex(fdp.ReadRegister(RIP))) fdp.Resume() # no panic, machine...

Wrong sizeof() argument in FDP_ReadVirtualMemoryInternal()

`sizeof(FDP_READ_PHYSICAL_MEMORY_PKT_REQ)` at https://github.com/Winbagility/Winbagility/blob/master/src/FDP/FDP.c#L362 should be `sizeof(FDP_READ_VIRTUAL_MEMORY_PKT_REQ)`

CpuSHM not synced with the VMCS

The CpuSHM should be synced with the VMCS each time the CPU goes from guest to host.

Wrong size of dummy page in DumpPhysicalMemory()

A typo in [DumpPhysicalMemory()#L400](https://github.com/Winbagility/Winbagility/blob/master/bindings/python/PyFDP/FDP.py#L400) causes the "dummy page" (made of `?` characters) to be of size 8192 instead of 4096; the fix is replacing `b"??"*_4K` with `b"?"*_4K`.

NameError in DumpPhysicalMemory()

The following script: ```python #!/usr/bin/env python3 from PyFDP.FDP import FDP fdp = FDP("MacOS") fdp.Pause() fdp.DumpPhysicalMemory("raw") fdp.Resume() ``` raises a `NameError` in `DumpPhysicalMemory()`: ``` PS C:\Users\integeruser> python.exe .\crash.py Traceback (most recent...

ctypes.ArgumentError in ReadPhysicalMemory()

The following script: ```python #!/usr/bin/env python3 from PyFDP.FDP import FDP fdp = FDP("MacOS") fdp.Pause() FDP_CR3_REGISTER = 0x2B cr3 = fdp.ReadRegister(FDP_CR3_REGISTER) fdp.ReadPhysicalMemory(cr3, 0x8) fdp.Resume() ``` raises a `ctypes.ArgumentError` in `ReadPhysicalMemory()`: ```...

pip install PyFDP not working

Trying to install PyFDP via pip fails: ``` PS C:\Users\integeruser> python -m pip install PyFDP Collecting PyFDP Could not find a version that satisfies the requirement PyFDP (from versions: )...