Closed hhuiwang closed 2 months ago
Hi, Thanks for creating this issue.
It's actually expected since I've tons of revisions to the HyperDbg for EPT hooks. I think the best approach here is to use HyperDbg for real-world scenarios and keep the tutorial as easy as possible.
Thanks for your reply. Can you give this BUG advice? I have been reading your blog and trying to find out the problem, but I really can't solve it. I have to ask you, this question has been bothering me for a long time.
Maybe it's a problem with the length disassembler engine. Hypervisor From Scratch uses a really light LDE which is not working most of the time. But, HyperDbg uses Zydis which is perfect and correct disassembler.
也许是长度反汇编引擎的问题。Hypervisor From Scratch 使用非常轻量级的 LDE,大多数时候都不起作用。但是,HyperDbg 使用 Zydis,它是完美且正确的反汇编器。
Thank you for your advice
Several functions have this problem for a long time (my English is not good, so I can only record to show my problem on the screen, sorry)
Try to read the code for the HyperDbg project, but that project was just too hard for a rookie like me