-
ARM snapshots (and recordings) taken before 7c647d37970215a38a07c8f6f7eb8941e4a76fe9 (the old date on that commit indicates when it was merged into upstream, we pulled it into master on March 9th in #…
-
Seems like pread64 doesn't processed by syscalls2
Proof of concept:
```#! /usr/bin/env python3
from pandare import Panda
panda = Panda(generic="x86_64")
panda.require("osi")
panda.require(…
-
I'm not sure why or when this stopped working, but the pypanda example `file_faker.py` no longer works. However, if the command is changed to `xxd` instead of `cat`, the faked contents appear.
I su…
-
I think word_size = int(self.panda.bits/8)
```python
def dump_stack(self, cpu, words=8):
'''
Print (telescoping) most recent `words` words on the stack (from stack pointer to s…
-
Probably a degenerate case. pyPanda encounters a protobuffer exception with the following code snippet.
```python
#!/usr/bin/env python
from pandare import Panda
panda = Panda(generic='x86_64')
…
-
not working
```python
from pandare import Panda, blocking
import os.path
panda = Panda(generic="x86_64")
libc = {
"__libc_malloc": 0x97070,
"malloc": 0x97070,
"_…
-
Docker image `pandare/pandadev:latest` (DIGEST `306eacc011ca`) may have a conflict on default Protobuf versions between its base image Ubuntu 20.04 (protobuf 3.6.1 for [focal](https://packages.ubuntu.…
-
Say for instance someone wanted to catch all uses of RtlZeroMemory
(macro which calls memset to set a given range of memory to 0) within
a windows playback, how would you go about doing this? As far…
-
```python
from pandare import Panda, blocking
panda = Panda(generic="x86_64")
@panda.ppp("proc_start_linux","on_rec_auxv")
def rec_auxv(cpu, tb, av):
procname = panda.get_process_name(cpu…
-
There is some weird behavior in PyPANDA scripts that try to get data from stdin.
For example, the following script will _sometimes_ raise an EOFError on the call to `input()`
```py
#!/usr/bin/env…