python-idb icon indicating copy to clipboard operation
python-idb copied to clipboard

Published 20 hours ago verified publisher icon williballenthin

Lumina requests support

Open XVilka opened this issue 5 years ago • 4 comments

Would be nice to be able to request function information from Lumina servers without IDA Pro running.

XVilka avatar Mar 06 '19 06:03 XVilka

yes, this would be a fascinating research project!

williballenthin avatar Mar 06 '19 16:03 williballenthin

i had done some inspection of ida.wll to see how IDA constructs the hashes it sends to Lumina. I don't recall this being trivial, and seemed to include information about the stack layout to signature the function. fortunately, this was pretty obvious to find in the DLL, so it remains a feasible project.

williballenthin avatar Jun 27 '20 18:06 williballenthin

This might be relevant:

  • https://github.com/synacktiv/lumina_server
  • https://www.synacktiv.com/publications/investigating-ida-lumina-feature.html

XVilka avatar Dec 15 '20 16:12 XVilka

This project as well: https://github.com/naim94a/lumen

ITAYC0HEN avatar Dec 17 '20 07:12 ITAYC0HEN