qiling

qiling copied to clipboard

asus-ac5300 firmware Invalid instruction (UC_ERR_INSN_INVALID), arm little endian

1

***Describe the bug** When emulate asus-ac5300 firmware, Invalid instruction (UC_ERR_INSN_INVALID) occured, firmware download link: http://ftp.ufanet.ru/pub/firmware/Asus/RT-AC5300/RT-AC5300_3.0.0.4_380_7266-g6439257.trx **Sample Code** ```python PROJECT_ROOT="/opt/firmwares/asus" ql = Qiling([PROJECT_ROOT + "/usr/sbin/httpd"], PROJECT_ROOT, console=True, verbose=QL_VERBOSE.DEBUG) ql.run() ``` **Error**...

newthis

wil qiling support run a elf which compress by upx？

8

i just use upx to compress a elf ,which will call system(ls -alh) after running i can run it on linux normally but i run it with qiling, it will...

cyber1c3

Unmapping part of a MMIO region causes future `ql.save`s to crash

2

**Describe the bug** When saving a qiling state after having unmapped part of an MMIO region, the save fails with a `KeyError`. See the below script. **Sample Code** ```python import...

LukeSerne

Restoring a state with MMIO causes an exception

8

**Describe the bug** Mapping an MMIO region, then saving the qiling state and then restoring the qiling state causes an exception. See the script below. **Sample Code** ```python import qiling...

LukeSerne

Fix bug: DLL address still use ImageBase address in spite of changing lib_base.

17

… lib_base ## Checklist ### Which kind of PR do you create? - [ x ] This PR only contains minor fixes. - [ ] This PR contains major feature...

nacayoshi00

This in fact implements timeclock interrupt for Qiling(Unicorn) and thus can be used in mcu and multithreaded. Still work in progress but any review is highly welcome.

wtdcode

Does Ollvm de-flatten support android arm64？

6

I can use the function normally on x64 platform，but It would be wrong on android arm64. ``` Traceback (most recent call last): File "C:/Users/fa1con/EXE/IDA7.5/plugins/qilingida.py", line 818, in activate self.action_handler.ql_handle_menu_action(self.action_type) File...

fa1conn

"Protocol not supported" on tendaac1518 example

5

***Describe the bug** I am trying to use the example provided for Tenda's router with its intented firmware by following the steps commented at the beginning of the script but...

Olasergiolas

Thread stuck when emulating a tftpd binary from firmware

2

**Describe the bug** When trying to emulate a `tftpd` binary from firmware, it seems that the thread stuck when set `multithread=True`. Here are some outputs. ``` ... // too many...

cq674350529

How can I replicate Pwntools-esque: p.sendline(payload) functionality with Qiling? (or any similar functionality)

2

In pwntools, where a program is waiting for user input (via `fgets` or similar) an exploit might look like: ``` from pwn import * p = process("./vuln") nop_sled = asm(shellcraft.nop()...

jt0dd