panda
panda copied to clipboard
panda-re
Platform for Architecture-Neutral Dynamic Analysis
We have a new Linux introspection library we'd like to integrate. This issue will track development. The goal for the initial PR is to not break existing plugins, but this...
cmpxchg instructions on x86 (at least [`cmpxchg16b`](https://www.felixcloutier.com/x86/cmpxchg8b:cmpxchg16b) on x86_64) do not trigger mem_before_write callbacks. This can be reproduced as follows: ``` mkdir iso curl -o iso/cmpxchg.cpp https://gist.githubusercontent.com/pcworld/7d54d59c57bdedf4415c5f5bc62d8662/raw/936e46d33e6262a3d24e7cf3e33923dde2437ac5/cmpxchg.cpp ``` Then run...
Right now, only PyPANDA supports loading "generic images" which are a mapping of a simple name (e.g., x86) to some files hosted at panda.re combined with OSI profiles and standard...
I think this would be pretty simple to add and quite useful
Whenever I use the plugin related to taint2(ida_taint2、tained_branch、tainted_net、serial_taint), (./panda/build/i386-softmmu/panda-system-i386 -m 4096 -monitor stdio -show-cursor -device usb-tablet -machine usb=on -replay 1101218 -panda stringsearch:str="kkkkkk" -panda tstringsearch -panda ida_taint2 ./panda/build/i386-softmmu/panda-system-i386 -m 4096 -monitor...
Since some programs being tested might not exit on their own, or might be stuck waiting for something, it would be useful to have an optional timeout parameter for `panda.record_cmd()`....
Trying to dump the CPU registers for each instruction may cause a `BlockingIOError`: ```python @panda.cb_insn_translate def should_run_on_insn(CPUState_env, target_ptr_t_pc): return True @panda.cb_insn_exec def on_insn(CPUState_env, target_ptr_t_pc): print("CPU STATE: ", CPUState_env) print(panda.arch.dump_regs(CPUState_env)) return...
Two plugins call `panda_enable_memcb` without registering memory based callbacks. - `callstack_instr`: https://github.com/panda-re/panda/blob/98d0b10956d761aa455c68ad7b1cf422e756599f/panda/plugins/callstack_instr/callstack_instr.cpp#L566 - `pri_dwarf`: https://github.com/panda-re/panda/blob/98d0b10956d761aa455c68ad7b1cf422e756599f/panda/plugins/pri_dwarf/pri_dwarf.cpp#L2440 In the case of `pri_dwarf` there seem to be callbacks that are no longer there....
The default system image runs very slowly, do we offer a streamlined image based on buildroot?
I'm having trouble understanding the execution model of PyPanda. I couldn't figure out what the proper way would be to make a synchronous qcow2 snapshot, i.e. snapshotting at a specific...