-
_[Originally from @DannyParker0001]_
This is only somewhat related, but something I remembered that would also be cool is to be able to call the methods il2cpp exports.
All methods in il2cpp-api.c…
-
@LatrecheYasser
`features['signature'] = int(lief_file.has_signature)` **has_signature** returns an object in pe.py: 56.
and we should have two features **has_signature** & **signature**.
-
In addition to a report for New Attack Surface (yeah, I know, next release), the tool should also output a variety of text files for different added attack surface that can then be consumed by tools.
…
-
The DllCharacteristics.IMAGE_DLLCHARACTERISTICS_NO_SEH Flag is never set when examining a PE file regardless of whether the PE uses safeseh or not.
It's either that or I am being a moron and not us…
-
I think the -ph option in osslsigncode isn't functioning properly.
I've tried to sign a PE file using both signtool and osslsigncode with -ph option. The signature from osslsigncode seems contain an …
-
I'm using CLRMD 1.0 and since recently I'm seeing this exception (not for all crash dumps):
```
ERROR: WinDbgAnalyzer failed: System.AccessViolationException: Attempted to read or write protected …
-
The win-def:peheader_test examines the pe headers executables, dlls, etc. which can be 32-bit or 64-bit. As a result, we should add support for the windows_view behavior in the win-def:peheader_test s…
-
The entity image_file_16bit_machine doesn't seem to have a corresponding documented characteristic. See https://msdn.microsoft.com/en-us/library/windows/desktop/ms680313(v=vs.85).aspx
Similarly, t…
-
Occasionally, CLRMD would have an access violation with this stack:
```
Microsoft.Diagnostics.Runtime.dll!Microsoft.Diagnostics.Runtime.Utilities.PEHeader.FromBuffer(Microsoft.Diagnostics.Runtime.…
-
### Describe the bug
I was editing some Razor Pages (the `Project\Pages` kind) then refreshing the changes in Chrome (Version 71.0.3578.98). My dev loop is tight, so I make a small edit then refresh …