carbonblack binee issues

carbonblack / binee

Binee: binary emulation environment

GNU General Public License v2.0

502 stars 73 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Bump golang.org/x/sys from 0.0.0-20191120155948-bd437916bb0e to 0.1.0

#72 dependabot[bot] opened 1 year ago
0
Error finding dll files.

#71 iliveinpain opened 2 years ago
0
Bugs found while testing on malware unusual packers + Hooks implemented

#70 mmn3mm opened 4 years ago
0
Parsing resources

#69 mmn3mm closed 4 years ago
1
Installation fails

#68 Mefist0 closed 4 years ago
1
Slack invite link in README is dead

#67 evandrix closed 4 years ago
1
streamlined printf, including 64-bit support

#66 jnishikawa-carbonblack closed 4 years ago
0
Incorrect parsing of 64bit PE in readImports

#65 igascr opened 4 years ago
1
X64 peb

#64 jnishikawa-carbonblack closed 4 years ago
0
Add C++ Redistributable to Documentation/Wiki

#63 utkonos closed 1 year ago
1
panic: runtime error: invalid memory address or nil pointer dereference

#62 utkonos closed 4 years ago
7
Question|Consult: Benignware Emulation of LOLBAS Interpreters

#61 dfirence opened 4 years ago
1
Lowercase, DRV and hooks

#60 0ssigeno closed 4 years ago
1
Incorrect return value of _p_fmode and _p_commode

#59 0ssigeno opened 4 years ago
0
Bug fixes to the PE file loading (especially in imports resolution)

#58 mmn3mm closed 4 years ago
1
fixes bug in loader while trying to resolve an exported function

#57 kgwinnup closed 4 years ago
1
added sha256 to pefile parser

#56 kgwinnup closed 4 years ago
0
Log instruction

#55 kgwinnup closed 4 years ago
0
added a maximum tick to limit emulation instruction if required. Defa…

#54 kgwinnup closed 4 years ago
0
modify instruction printing so the first instruction on a full hook is also shown in the output

#53 kgwinnup closed 4 years ago
0
More cleanup

#52 kgwinnup closed 4 years ago
0
remove requirement for capstone/gapstone

#51 kgwinnup closed 4 years ago
1
updated marshalling to be use go's json Marshal function

#50 kgwinnup closed 4 years ago
0
added more to the default win options, removed unnessesary exported f…

#49 kgwinnup closed 4 years ago
0
replaced command line parser fucntion with flag package

#48 kgwinnup closed 4 years ago
0
Issues with mingw32-compiled PE32

#47 rjzak opened 4 years ago
0
Report error to user if analysis is aborted prematurely

#46 mewmew opened 4 years ago
0
ntdll,user32: Add support for ntdll.KiFastSystemCall sysenter wrapper, as needed by NtUserCallOneParam and NtUserCallTwoParam of user32.dll

#45 mewmew opened 4 years ago
1
incorrect execution of GetLastError, wrong set of assembly instructions executed

#44 mewmew opened 4 years ago
11
fixed issue with parsing imports for PE+ binaries

#43 kgwinnup closed 4 years ago
0
pefile: ensure deterministic order of results in ImportedDlls

#42 mewmew closed 4 years ago
0
non-deterministic enumeration of imported libraries

#41 mewmew opened 4 years ago
1
windows: remove unused function ResolveNameToHook

#40 mewmew closed 4 years ago
0
inconsistent definition of nameToHook key in AddHook and ResolveNameToHook

#39 mewmew closed 4 years ago
0
windows: print instruction at function entry point if not fully hooked

#38 mewmew closed 4 years ago
0
debug output of first instruction of function missing when using `-v`

#37 mewmew closed 4 years ago
0
windows: handle error from LoadPeFile

#36 mewmew closed 4 years ago
0
crashes with panic when running `binee doesnotexist.exe`

#35 mewmew closed 4 years ago
0
unable to resolve indirect call; e.g. call eax, with eax = 0

#34 mewmew opened 4 years ago
0
windows: make loading of apisetschema.dll optional

#33 mewmew closed 4 years ago
0
windows: handle PE32+ optional header type

#32 mewmew closed 4 years ago
0
type assertion panic in `windows/loader.go`: interface conversion: interface {} is *pefile.OptionalHeader32P, not *pefile.OptionalHeader32

#31 mewmew closed 4 years ago
0
run goimports to group imports

#30 mewmew closed 4 years ago
0
Provide optional support for emulation without `apisetschema.dll`

#29 mewmew closed 4 years ago
12
Section entropy

#28 kgwinnup closed 4 years ago
0
parse a pe file from byte array

#27 kgwinnup closed 4 years ago
0
Cleaner error checking

#26 kgwinnup closed 4 years ago
0
[bugfix] reading from EOF ; aspack corner case

#25 MennaEssa closed 4 years ago
0
Add go.mod to respository

#24 jholowczak closed 4 years ago
0
Bug in the windows loader when loading Aspack packed binaries

#23 MennaEssa closed 4 years ago
1