x64dbg
/
TitanEngine
mirror of https://github.com/x64dbg/TitanEngine
1
0
Fork 0
Code Releases Activity
417 Commits 7 Branches 14 Tags 14 MiB
Commit Graph

54 Commits

Author SHA1 Message Date
Duncan Ogilvie 0f81825ff0 Add UE_ENGINE_DISABLE_ASLR to remap the debuggee image without ASLR 2021-11-15 02:56:34 +01:00
the_janitor 18a885a703 Added an alternative memory breakpoint method that uses PAGE_NOACCESS instead of PAGE_GUARD 2021-09-02 02:52:14 +02:00
Duncan Ogilvie bfec722a12
Add safe attach option 2018-07-19 16:27:43 +02:00
Mattiwatti ef7deb59d4
Add InitNativeDebug and InitNativeDebugW API functions for executables that cannot be started with CreateProcess 2017-07-29 00:37:22 +02:00
mrexodia c4e6afbd93
enable debug privilege when calling OpenThread too (closes pull request #11) 2017-01-07 16:54:12 +01:00
mrexodia 895f80996b
fixed UE_DLLCHARACTERISTICS 2016-08-27 21:32:57 +02:00
mrexodia bdaae76d9d
added UE_DLLCHARACTERISTICS 2016-08-27 21:03:42 +02:00
cypherpunk ea39130ed9 updated C/C++ SDK files for Resourcer::ExtractResourceFromFile fixes 2015-12-20 16:33:30 +01:00
Mr. eXoDia 7726d8fcf1 massive formatting 2014-08-05 01:04:23 +02:00
Mr. eXoDia 4b54b7bcea GetProcessInformation -> TitanGetProcessInformation + GetStartupInformation -> TitanGetStartupInformation (windows 8 SDK contains GetProcessInformation already) 2014-07-10 13:02:47 +02:00
Mr. eXoDia 3c8b51aa52 added UE_CH_DEBUGEVENT custom handler, removed UE_CH_ALLEVENTS (since it's not usable anyway) 2014-04-22 19:32:58 +02:00
Mr. eXoDia bc2240d1c1 added export 'TitanOpenProcess' 2014-04-16 19:11:12 +02:00
Mr. eXoDia 98f71dbad6 - fixed EngineSetDebugPrivilege 
- added function EngineOpenProcess (with debug privilege option)
- added UE_ENGINE_SET_DEBUG_PRIVILEGE
- added debug privileges before CreateProcess and DebugActiveProcess
- remove debug privilege from the child process
- dumper/handler/importer/process now use EngineOpenProcess
 2014-04-16 17:14:20 +02:00
Mr. eXoDia ddf87c22c0 - replaced all 'long long' with 'ULONG_PTR' 
- fixed various bugs in TitanEngine.Debugger.Context (invalid OpenThread access flags)
- added SDK to the project (for easy editing)
 2014-04-04 14:53:18 +02:00
NtQuery 2ebf55ebba fixed sdk 2014-03-16 16:51:45 +01:00
NtQuery 17d8b6e09e extended thread info 2014-03-16 16:47:08 +01:00
Mr. eXoDia 10a7373eb3 - working MemoryReadSafe & MemoryWriteSafe in C++ SDK 2014-03-15 16:27:07 +01:00
Mr. eXoDia 3047edc22b - added function EngineCheckStructAlignment (resolved issue #33) 2014-03-14 21:43:01 +01:00
cypherpunk 4d4c0be059 fix for CPP SDK header 2014-03-12 18:16:11 +01:00
Mr. eXoDia 8768d8f6d7 updated TitanEngine.hpp 2014-03-12 16:51:01 +01:00
Mr. eXoDia fc51e0d144 - added StepOut function 2014-03-12 14:49:36 +01:00
Mr. eXoDia 3675215bf3 - added a debug callback reason for plugins -> UE_PLUGIN_CALL_REASON_UNHANDLEDEXCEPTION 
- now plugins are actually registered
- fixed OUTPUT_DEBUG_STRING_EVENT (DBGCode should be set before the callback, so plugins & custom handlers can change it)
 2014-03-11 16:14:49 +01:00
Mr. eXoDia 085e6ae7a9 - added function ImporterGetDLLNameFromDebugeeW 
- fixed function ImporterGetDLLNameFromDebugee
- added function EngineGetModuleBaseRemote
- added function EngineGetAPIAddressRemote
- added function EngineGetAPIAddressLocal
- fixed a potential bug in SetAPIBreakPoint & DeleteAPIBreakPoint
- fixed ImpoerterGetDLLName (this function is used on the local process)
- fixed function ImporterGetDLLNameW & ImporterGetDLLName
- moved fixed functions up
 2014-03-11 15:25:17 +01:00
Mr. eXoDia 5e5dac1186 - fixed the function EngineGetProcAddressRemote (now supports any number of modules) 
- added the function EngineGetModuleBaseRemote
- added export ImporterGetDLLNameW
- fixed export ImporterGetDLLName
 2014-03-11 14:53:11 +01:00
NtQuery a742815814 UNICODE-FIX new ImporterGetRemoteDLLBaseExW 2014-03-11 12:33:06 +01:00
cypherpunk b640162cfe fixed typos in SDK headers 2014-03-10 15:40:08 +01:00
Mr. eXoDia 93a8582044 - some new idea, see issue #23 
- updated c++ header
 2014-03-09 23:10:42 +01:00
NtQuery a51f2455ba updated some header and def files 2014-03-09 22:18:21 +01:00
mr.exodia bc7906460c - formatting lol 
- rewrote TitanEngine.Threader to use a vector (decreased memory footprint)
- Removed function ThreadGetThreadData
 2014-03-05 17:49:27 +01:00
mr.exodia e265f498d0 - removed some useless defines 
- added GetPEBLocation64 to the SDK files
- GetPEBLocation is also defined on x64, but does nothing there
- moved a function to Global.Engine.Hider
 2014-03-04 21:31:04 +01:00
mr.exodia 92451cfe42 - removed SetBPXEx (condentional breakpoints are removed now) 
- no more static breakpoint list
- huge refactoring
- bugs fixed in TitanEngine.Breakpoints
 2014-03-04 21:07:07 +01:00
mr.exodia 2ae7e9e541 - added RipEvent callback 
- removed debug message
 2014-02-08 20:44:07 +01:00
mr.exodia 07291f2710 fixed a spelling mistake (thanks to hors) 2014-01-27 17:24:52 +01:00
mr.exodia 11543652c5 resolved issue #6 2014-01-26 13:36:01 +01:00
cypherpunk 419f9a3c4b cleanup TE remnants obsoleted by scylla integration 2014-01-21 23:21:38 +01:00
cypherpunk 29d9d8ec5f fixed EnumAddedData to work with scylla 2014-01-19 23:41:07 +01:00
cypherpunk 095950b16d added Importer::DeleteAPI export for deleting an API out of the parsed/read IAT, x64 still needs to be updated 2014-01-16 01:41:59 +01:00
cypherpunk 21ba78ee13 forgot obsolete parameter in C++ SDK header 2014-01-15 00:05:52 +01:00
cypherpunk cfb052280e fixed ExportIAT to work for FileMapping with Scylla 2014-01-14 18:00:11 +01:00
cypherpunk 2c1639d6cc custom section name support 2014-01-13 00:17:04 +01:00
cypherpunk 86abf46dbe fix for ExportIATEx 2014-01-12 23:01:38 +01:00
cypherpunk d0a5b10884 forgot sth with: removed obsolete parameter imageBase 2014-01-12 22:05:54 +01:00
cypherpunk 3085c44b31 updated C++ SDK 2014-01-12 20:01:21 +01:00
cypherpunk d251983720 added UE_BASEOFCODE / UE_BASEOFDATA to Dumper::GetPE32 / Dumper::SetPE32 functions 2013-12-18 15:03:25 +01:00
cypherpunk 9cd244db3e - fixed mainly const char* vs char* 
- not copy paste, kept return datatypes typedef free (ULONG_PTR vs long long etc)
- some WIN64 defines added (not tested but copied from TitanScript)

changed classes (const char* vs char*):
- DumperA, DumperW, DumperX
- DebuggerA, DebuggerW, DebuggerX
- ImporterA, ImporterW, ImporterX
- RealignerA, RealignerW, RealignerX
- RelocaterA, RelocaterW, RelocaterX
- Tracer
- ExporterA, ExporterW, ExporterX
- LibrarianA, LibrarianW, LibrarianX
- TLSA, TLSW, TLSX
- StaticA, StaticW, StaticX
- RemoteA, RemoteW, RemoteX

not changed but might need changes:
- Threader, Resourcer, Hooks, Process, Handler, Extension, Engine, Translate

doesnt need changes:
- Hider
 2013-12-09 12:04:01 +01:00
cypherpunk d2da5448a6 readded UE_VANOTFOUND 
used e.g. in TitanScript as return type from TE
 2013-12-09 12:03:06 +01:00
mr.exodia d585941ba9 - fixed a small SDK bug (with UE_MEMORY_EXECUTE) 
- fixed a bug with MEMORY_EXECUTE (which was excluded as memory breakpoint type)
- slightly bigger buffer, to avoid undefined output when you directly use the returned char pointer as string
 2013-12-02 20:47:38 +01:00
cypherpunk 33d881266d several new const variables from TitanEngine.h were missing in their enums in TitanEngine.hpp 
(exception handling, memory bps,segments,)
 2013-10-14 02:02:24 +02:00
cypherpunk b1d9934416 fixed C++ SDK calling convention for callbacks. its compiling/linking now again :) 2013-10-14 00:50:13 +02:00
mr.exodia 0a2d5747b6 - updated readme (basically it says: LUA, Python and MASM are not tested with these updates) 
- re-added UE_HIDE_PEBONLY (thanks to cypherpunk for the report)
 2013-10-13 23:39:06 +02:00