x64dbg
/
TitanEngine
mirror of https://github.com/x64dbg/TitanEngine
1
0
Fork 0
Code Releases Activity
401 Commits 7 Branches 14 Tags 14 MiB
Commit Graph

401 Commits

Author SHA1 Message Date
Matthijs Lavrijsen 8f83721fd3 Fix EngineSetDebugPrivilege deadlocking the system when trying to debug lsass.exe 2020-08-18 16:33:32 +02:00
Duncan Ogilvie 51ba022c29
Fix a weird exploit when attaching to a process that overwrites its own OptionalHeader.SizeOfStackReserve 2020-04-10 03:56:08 +02:00
Duncan Ogilvie 451c85e465
Do not silently swallow exceptions when detaching 2020-01-21 20:27:24 +01:00
Duncan Ogilvie e76867196e
Allow zero timeouts to be set with SetDebugLoopTimeOut 2020-01-21 20:27:15 +01:00
Mattiwatti 8e79163e4d Fix PE header size check for values of e_lfanew >= 0x10000 2020-01-21 20:22:39 +01:00
Sandor Nemes 247f643cac Updated Python bindings 2019-10-01 10:39:32 +02:00
Mattiwatti 357759757d StepInto: close thread handle after setting context 2019-05-19 23:28:06 +02:00
Duncan Ogilvie 7ad288f30e
Fix debug event timeout feature + add extra check if the debuggee was terminated 
Details: https://github.com/x64dbg/x64dbg/issues/2087
 2018-12-28 16:26:43 +01:00
Duncan Ogilvie 50c0d90fcb
Fix offsets in _PEB_T 2018-12-28 15:34:59 +01:00
Duncan Ogilvie 7976be4edd
Improved version of DbgUiConnectToDbg by Mattiwatti 2018-11-18 15:43:59 +01:00
Duncan Ogilvie 250c44388b
sign LibraryLoader executables 2018-10-31 00:13:20 +01:00
Duncan Ogilvie a260728ad3
improve safe attach option on Vista+ 2018-10-31 00:13:08 +01:00
Duncan Ogilvie f835fc8719
fix safe attach option on 32 bit 2018-10-31 00:12:48 +01:00
Duncan Ogilvie bfec722a12
Add safe attach option 2018-07-19 16:27:43 +02:00
Duncan Ogilvie ab037ef1c5
don't close process and file handles in ForceClose 2018-07-19 15:59:21 +02:00
Mattiwatti ef020ed39d Merged in Mattiwatti/titanengine/x64dbg (pull request #13) 
Fix memory/handle waste caused by mapping every loaded DLL into the debugger process

* Don't create a file mapping for every loaded DLL in LOAD_DLL_DEBUG_EVENT that is not freed until the end of the debug session just to query the DLL filename. GetMappedFileNameW takes a process handle, so just use the debuggee's process and DLL base instead

* Fix double free if TranslateNativeNameW() fails
 2018-03-23 11:25:54 +00:00
Duncan Ogilvie 9b36d32bf6
Correctly handle the TagWord on x64 
https://github.com/x64dbg/x64dbg/issues/1837
 2017-12-17 01:53:25 +01:00
Duncan Ogilvie 02be13641e
Fix the issue with TitanEngine closing invalid handles 
https://x64dbg.com/blog/2017/11/04/the-big-handle-gamble.html
 2017-11-11 11:06:15 +01:00
Duncan Ogilvie f3626c717e
Build scylla_wrapper_dll from source 2017-10-24 00:43:15 +02:00
Duncan Ogilvie 587183f984
Fix a problem with LoadDll.hFile and committing gigabytes of memory on attach 2017-10-24 00:04:56 +02:00
mrexodia 5d1e43bb69
compile on vs2010 + remove over-allocation 2017-07-29 15:23:52 +02:00
Mattiwatti 0f5566b1db Merged in Mattiwatti/titanengine/native-debug-init (pull request #12) 
Add InitNativeDebug API
 2017-07-29 12:27:28 +00:00
Mattiwatti 86fe598475
Make the default command line the quoted image path, to prevent empty command lines in case no arguments were specified 2017-07-29 05:53:47 +02:00
Mattiwatti ef7deb59d4
Add InitNativeDebug and InitNativeDebugW API functions for executables that cannot be started with CreateProcess 2017-07-29 00:37:22 +02:00
Mattiwatti dc0a1c33a8
Update ntdll.h and import libraries (see https://github.com/x64dbg/x64dbg/pull/1620) 2017-07-29 00:31:05 +02:00
mrexodia e2abc789e9
fixed WOW64 PEB address retrival on Windows 10 2017-06-06 21:35:54 +02:00
cypherpunk 7cffd0df6d added a helpful comment for WOW64 PEB64 2017-05-01 16:52:06 +02:00
cypherpunk 0a63361a61 commented PEB64 patches for WOW64 processes to prevent crashes of debuggee since Win10 Creators Update 2017-05-01 16:48:17 +02:00
mrexodia 21e146bc23
directly use thread context manipulation for StepInto 2017-04-28 01:06:58 +02:00
mrexodia d7e66e5ae4
fixed some bugs on WOW64 with thread context manipulation 2017-04-28 01:01:17 +02:00
mrexodia 239df37a5e
removed command line limit 2017-04-20 10:58:43 +02:00
mrexodia 0f7e664a4a
more versatile DLL loader extraction 2017-03-14 06:38:05 +01:00
mrexodia 47f481f5d9
move FlushInstructionCache in DeleteBPX to the correct location 2017-01-11 18:33:31 +01:00
mrexodia c4e6afbd93
enable debug privilege when calling OpenThread too (closes pull request #11) 2017-01-07 16:54:12 +01:00
mrexodia fd47444406
PAGE_EXECUTE_READ instead of PAGE_EXECUTE_READWRITE in MemoryReadSafe 2017-01-02 03:21:34 +01:00
mrexodia 806f81e187
small fixed with MxCsr and other FltSave structures for x64 2016-09-25 17:48:35 +02:00
mrexodia 6dc9dcd3cf
performance improvement in GetContextDataEx 2016-09-03 05:45:11 +02:00
mrexodia 895f80996b
fixed UE_DLLCHARACTERISTICS 2016-08-27 21:32:57 +02:00
mrexodia bdaae76d9d
added UE_DLLCHARACTERISTICS 2016-08-27 21:03:42 +02:00
mrexodia c5be34dc92
removed certain checks for performance improvement (x64dbg only) 2016-06-04 20:23:17 +02:00
mrexodia e089f4af41 fixed some bugs with RVA -> Offset conversion (appears to be working fine for standard exes now) 2016-04-22 21:04:38 +02:00
mrexodia 941f391317 Merged in RaMMicHaeL/titanengine-update/patch1 (pull request #10) 
Fix INVALID_HANDLE exceptions
 2016-03-05 13:16:50 +01:00
RaMMicHaeL c283737b53 These handles are managed by the system; fixes INVALID_HANDLE exceptions when the system tries to close the handles 2016-03-05 14:13:57 +02:00
cypherpunk ea39130ed9 updated C/C++ SDK files for Resourcer::ExtractResourceFromFile fixes 2015-12-20 16:33:30 +01:00
cypherpunk fdbc1aa989 fix Resourcer::EnumerateResource which wasnt sending correct resourceName / resourceType 2015-12-20 16:32:44 +01:00
cypherpunk 758a361df1 fix for using ExtractResourceFromFile from callback of EnumerateResource 2015-12-20 16:31:43 +01:00
cypherpunk a37ce345e2 fixed Resourcer::ExtractResourceFromFile which was broken ever since 2015-12-20 16:30:30 +01:00
mrexodia fb03e9de19 fixed some formatting 2015-12-15 17:10:04 +01:00
mrexodia fa184271cd Merged in Herz3h/titanengine-update (pull request #9) 
Hardware Breakpoint : Fixed a bug where when HW BP is hit and the user deletes the HW BP then resumes the execution, the Trap Flag is still set which make titanengine think the debuggee throwed a SINGLE_STEP Exception.
 2015-12-11 22:20:28 +01:00
Herzeh db1a181193 Changed (1 << 8) to UE_TRAP_FLAG which already exists 2015-12-11 21:34:55 +01:00