Duncan Ogilvie
1c1a48bcee
DBG: fix heuristic string detection near the end of a page
...
related to #1906
2018-03-05 23:52:07 +01:00
Duncan Ogilvie
f8e4ed4f1f
DBG: fix bug with operand size in TraceRecord
2018-03-04 23:00:13 +01:00
Duncan Ogilvie
8da82cf569
PROJECT: remove keystone
2018-03-04 22:41:00 +01:00
Duncan Ogilvie
e5f950308a
PROJECT: remove capstone
2018-03-04 22:35:01 +01:00
Duncan Ogilvie
55d99b5647
DBG+GUI: replace Capstone with Zydis in trace record
2018-03-04 22:32:08 +01:00
Duncan Ogilvie
0343280cb5
DBG+GUI: update to Zydis v2.0.0
2018-03-04 22:22:54 +01:00
Duncan Ogilvie
1a99e09245
DBG: fix rare handle corruption in TitanEngine
...
closes #1863
closes #1759
2018-03-04 22:06:31 +01:00
Duncan Ogilvie
49167e92c6
DBG+GUI: fix many application verifier issues
2018-03-04 22:04:37 +01:00
Duncan Ogilvie
53e621c175
DBG: replace WAITID_STOP with a more reliable method
...
closes #1852
2018-03-04 22:04:04 +01:00
ThunderCls
e2dcda5498
removed unnecessary include
2018-03-02 10:17:14 +01:00
ThunderCls
5a28eb7d30
ASM styles added
2018-03-02 10:17:14 +01:00
ThunderCls
da8d90f674
Enhancements to the Data Copy dialog
2018-03-02 10:17:14 +01:00
ThunderCls
96b8038f88
Added ASCII field for edit registers dialog
2018-03-02 10:17:14 +01:00
Duncan Ogilvie
c5ce4313b4
DBG+GUI: update Zydis to the latest version
2018-02-24 13:42:59 +01:00
Duncan Ogilvie
289a6b1911
GUI: mnemonic help and brief now work better with prefixes
2018-02-24 12:43:48 +01:00
Duncan Ogilvie
16fdf57f41
DBG: move call to CB_STOPDEBUG to the very end of the debug loop
...
close issue #1899
2018-02-14 22:19:00 +01:00
Duncan Ogilvie
2c284cd210
DBG: remove std::thread usage from TaskThread
2018-02-14 20:38:49 +01:00
Duncan Ogilvie
804322aeb8
GUI: introduce setting for ASCII/Unicode in address dump mode
2018-02-08 01:22:33 +01:00
Duncan Ogilvie
8a1256b5fd
GUI: small refactor in Configuration
2018-02-08 01:22:33 +01:00
aikuimail
e8e7112cf5
GUI: swich bettween ASCII and UNICODE column in Address mode
...
closes issue #1880
2018-02-08 01:22:33 +01:00
Duncan Ogilvie
1fa1c3d705
DBG: remove limitation of placing "&" in labels
2018-01-30 20:54:45 +01:00
Duncan Ogilvie
e9c984fee7
DBG: better default configuration for Scylla
2018-01-28 11:51:45 +01:00
Duncan Ogilvie
ddc97f2a74
DBG: show PEB in memory map
...
#1882
2018-01-28 11:51:15 +01:00
torusrxxx
13b8db3a2b
fix and add UTF8/UCS4
2018-01-28 11:45:23 +01:00
torusrxxx
164d8b0730
View and copy raw string
2018-01-28 11:45:23 +01:00
Duncan Ogilvie
39f78b1c33
DBG: remove weak acquire in dbghelp_safe
...
possibly fixes #1863
2018-01-12 14:15:06 +01:00
ZehMatt
0e29990da5
Jump to thread IP by double clicking.
2017-12-31 12:34:05 +01:00
Duncan Ogilvie
3e510440d2
GUI: don't try reading the first byte of a memory region in HexDump
2017-12-28 23:26:13 +01:00
Duncan Ogilvie
2d6004da9b
DBG: remove TitanEngine for parsing TLS callbacks
2017-12-28 23:25:42 +01:00
Duncan Ogilvie
42dc5f90e5
DBG: fix Zydis.BranchDestination
...
closes #1855
2017-12-28 21:34:47 +01:00
Duncan Ogilvie
7c0d122ee4
DBG: add breakpointexceptionaddress variable
2017-12-28 20:27:23 +01:00
Duncan Ogilvie
8616ff67a2
DBG+GUI: fix OperandText returning weird values for relative jumps
...
closes #1849
2017-12-26 13:31:10 +01:00
Duncan Ogilvie
761e2f67c0
DBG: fix a rare bug with module resolving by name (thanks to chessgod101!)
...
if you had:
blub.exe
blub.exe.dll
And tried to resolve 'blub.exe' it could return the base of 'blub.exe.dll'
2017-12-24 13:21:06 +01:00
Duncan Ogilvie
2106873f55
GUI: revamp of the menu system
2017-12-18 03:07:27 +01:00
Duncan Ogilvie
bdde5d3cce
GUI: hide the "Disable Branch Destination Preview" menu + symbol menu in system modules only
2017-12-18 02:15:44 +01:00
Duncan Ogilvie
ed1dd3c6c1
GUI: save and restore deleted tab state
2017-12-18 02:03:14 +01:00
Duncan Ogilvie
0f1916cc2e
GUI: fix cip not displaying correctly in the reference view
2017-12-18 02:02:35 +01:00
Duncan Ogilvie
d2410a0835
DBG: Correctly handle the TagWord on x64
...
Closes #1837
2017-12-17 02:05:54 +01:00
Duncan Ogilvie
0e2ff40443
DBG: remove unused parameter from RecursiveAnalysis class
2017-12-17 02:05:53 +01:00
torusrxxx
f29d660b6e
Search for function pointer
2017-12-17 02:05:39 +01:00
Duncan Ogilvie
188b74bc91
GUI: implement OllyDbg's Find all names in current module (Ctrl+N)
...
Cheers to @R3MRUM from Twitter!
2017-12-08 03:10:10 +01:00
Duncan Ogilvie
37e83c9436
DBG+GUI: trim error descriptions in RegisterView and format functions
2017-12-03 22:27:47 +01:00
Duncan Ogilvie
e11701d7c3
GUI: improve InfoBox for bigger memory sizes
2017-12-03 22:27:47 +01:00
Duncan Ogilvie
d780df76df
PROJECT: shallow clone of deps to save bandwidth
2017-12-03 22:27:47 +01:00
Mattiwatti
70a836b17a
Move SafeSymCleanup() call to cbExitProcess so it isn't called when the process may have already terminated
...
debugLoopFunction: set fdProcessInfo->hProcess and fdProcessInfo->hThread to NULL as these shouldn't be used after this point. The actual CloseHandle calls on these two handles are done by kernel32!ContinueDebugEvent immediately after cbExitProcess
2017-11-28 17:29:50 +01:00
Mattiwatti
2f3f28746d
Remove 2 occurrences of 'varset("$hp", fdProcessInfo->hProcess)', one of which was being called with the initial handle from CreateProcess(). cbCreateProcess is now the only place where this variable is set, for both types of debug sessions (attaching or creating)
2017-11-28 17:29:50 +01:00
Mattiwatti
629a6022e4
Fix duplicate debuggee process and initial thread handles being kept around in the case that x64dbg is not attaching:
...
- CloseHandle() the fdProcessInfo->hProcess and fdProcessInfo->hThread handles and set them to NULL if CreateProcess was called (i.e. we are not attaching) just before entering the debug loop
- cbCreateProcess(): set fdProcessInfo->hProcess, fdProcessInfo->hThread and varset("$hp") to the correct handles prior to doing anything else
2017-11-28 17:29:50 +01:00
Mattiwatti
c8e8b692f0
Remove static global handle 'hProcess' in debugger.cpp; it is only used in one place as argument to SafeSymCleanup(). Use fdProcessInfo->hProcess instead
2017-11-28 17:29:50 +01:00
Duncan Ogilvie
27a9266de8
GUI: do not render instructions that are not visible on the screen + remove timer
...
#1819
2017-11-19 23:57:08 +01:00
Duncan Ogilvie
4eb0fb6b88
GUI: autocompletion works much nicer now
...
#1738
2017-11-17 16:46:18 +01:00