create a basicmodel that would work on vtypes

trolldbois / python-haystack

Process heap analysis framework - Windows/Linux - record type inference and forensics

http://trolldbois.blogspot.com/search?q=python-haystack

GNU General Public License v3.0

94 stars 33 forks source link

create a basicmodel that would work on vtypes #21

Open trolldbois opened 8 years ago

trolldbois commented 8 years ago

So that it "integrates" nicely with rekall/volatility. But that would mean migrating all the ctypes code to vtypes. not sure. ctypes are clearly lighter and technically more portable ?.

trolldbois commented 8 years ago

Totally a priority