zjgcjy/pykd
1
0
Fork 0
Code Actions Releases Wiki Activity

Commit Graph

  • 1b87344acb [~] m_offset moved into typeClass instance SND\EreTIk_cp 2011-02-28 09:14:14 +0000
  • 004a4067ea [~] refactoring: RAII idiom is used instead of manual memory management SND\evtanazia_cp 2011-02-24 10:46:00 +0000
  • a4993db623 [+] Added dbgModuleClass::print() [+] Added dbgExtensionClass::print() [+] Added dbgBreakpointClass::print() [+] Added dbgStackFrameClass::print() SND\evtanazia_cp 2011-02-24 09:15:45 +0000
  • f2471ac5a0 [~] skip unresolved imports [~] optimized for new functional of pykd SND\EreTIk_cp 2011-02-21 10:07:11 +0000
  • d3a22fc0a8 [+] addSynSymbol function adds a synthetic symbol to a module by virtual address [+] dbgModuleClass::addSynSymbol method adds a synthetic symbol by offset related to module base [+] samples/synimp.py: add synthetic symbols for module by imports SND\EreTIk_cp 2011-02-21 09:49:47 +0000
  • dfbbc434d3 [+] offset into TypeInfo (for fields) [+] method TypeInfo::build() for recursive typeClass building [+] virtual method printSelf() for address value for typedVarClass [~] remove trailing blanks, tabs replaced by spaces SND\EreTIk_cp 2011-02-19 15:45:04 +0000
  • 5879200d07 [+] part of functional (work with types) moved from typedVarClass into base class: typeClass [-] remove field m_size, which is duplicated in TypeInfo m_typeInfo [+] added function getTypeClass() - create instance of typeClass by module an type name SND\EreTIk_cp 2011-02-18 20:56:26 +0000
  • b091e32be0 [~] fixed: infinity loop on x32, if passed into typedVarList() address is not cast to addr64-format. condition in for(): entryAddress != address SND\EreTIk_cp 2011-02-18 10:43:35 +0000
  • d389dd16a5 [~] 2k3-x64 parameters fixed SND\EreTIk_cp 2011-02-17 20:07:12 +0000
  • 262dff0703 [~] fixed for Win2003 x64 (and WinXp x64) SND\EreTIk_cp 2011-02-15 13:17:30 +0000
  • 4ae55470b2 [~] updated : typedVar routine will return None if varibales's address is invalid. SND\kernelnet_cp 2011-02-15 08:19:12 +0000
  • a7bd2fd5e8 Added bat-file for compile project, modify stdafx.h (ignore the macro __field_ecount_opt if it has already been declared). SND\evtanazia_cp 2011-02-14 14:38:15 +0000
  • fa076cf50a [!] fixed : issue #8336 ( typedVar returns value with wrong type of fields ) SND\kernelnet_cp 2011-02-14 12:23:25 +0000
  • 5e4ad89747 [~] updated : loadArray returns python list, not dict SND\kernelnet_cp 2011-02-11 07:48:53 +0000
  • 1604ec506e [+] added : image() and pdb() method for dbgModuleClass class. They return paths to pdb and image files. SND\kernelnet_cp 2011-02-08 07:36:12 +0000
  • c74a81d560 [+] added : isValid() routine; it validates virtual address SND\kernelnet_cp 2011-02-07 07:59:22 +0000
  • f198999116 git-svn-id: https://pykd.svn.codeplex.com/svn@61031 9b283d60-5439-405e-af05-b73fd8c4d996 SND\kernelnet_cp 2011-02-04 07:48:31 +0000
  • e65c2bf418 [+] added : locals() routine; it returns local var for current scope SND\kernelnet_cp 2011-02-04 07:44:15 +0000
  • 8cab8ae27d [!] fixed : issue #8236 ( dprint/dprintln/print doesn't work with unicode string ) SND\kernelnet_cp 2011-01-26 16:17:33 +0000
  • 1afb67fd2e [!] fix:#8229 loadModuel("some_drv") - out message "IDebugSymbol::Reload failed" SND\EreTIk_cp 2011-01-26 14:52:55 +0000
  • 122ec5deea [!] fixed : issue #8239 ( ptrSignByte returns str value ) SND\kernelnet_cp 2011-01-25 15:32:01 +0000
  • a38310cad3 [+] added : accessmask.py script for parsing ACCESS_MASK structure SND\kernelnet_cp 2011-01-25 14:40:39 +0000
  • 664b047dce [+] added : typedVarArray routine SND\kernelnet_cp 2011-01-24 16:41:47 +0000
  • b61ac0b10a [~] updated : __str__ method for typedVar class SND\kernelnet_cp 2011-01-24 14:13:02 +0000
  • afb977d03b [~] updated : dbgModuleClass constructor fills symbol cache for optimization SND\kernelnet_cp 2011-01-20 08:38:44 +0000
  • f932c40469 git-svn-id: https://pykd.svn.codeplex.com/svn@60276 9b283d60-5439-405e-af05-b73fd8c4d996 SND\kernelnet_cp 2011-01-17 15:32:53 +0000
  • a3560b2b77 [~] updated : __str__ method for typedVar class SND\kernelnet_cp 2011-01-17 07:46:20 +0000
  • 25e7428ac1 [!] fixed: previous revision SND\kernelnet_cp 2011-01-17 07:31:35 +0000
  • b4898cff7e [+] added : __getattribute__ method for dbgModuleClass class to simplify access to module symbols's offsets SND\kernelnet_cp 2011-01-17 07:17:16 +0000
  • efdf59111b [[+] added : __str__ method for typedVar class, so it can be outputed by print operator SND\kernelnet_cp 2011-01-14 17:58:28 +0000
  • 0e12bf9fab [!] fixed: previous revision SND\kernelnet_cp 2011-01-08 13:43:40 +0000
  • af3e45bae6 [!] bug fixed: issue #8103 ( !py windbg extension imports modules into the global space ) SND\kernelnet_cp 2011-01-08 13:27:38 +0000
  • 44aeda68fb [~] eval() renamed to expr() SND\EreTIk_cp 2010-12-29 13:59:23 +0000
  • 22a1327c62 git-svn-id: https://pykd.svn.codeplex.com/svn@59203 9b283d60-5439-405e-af05-b73fd8c4d996 SND\kernelnet_cp 2010-12-27 08:05:37 +0000
  • 8b43407e91 [+] added : eval routine for evaluation windbg expression SND\kernelnet_cp 2010-12-27 08:02:19 +0000
  • db10c69deb [!] fixed : setExecutionStatus SND\kernelnet_cp 2010-12-27 07:46:48 +0000
  • 37f46bc097 [!] changed : debugger routines name made shorter ( step, trace, bp ) SND\kernelnet_cp 2010-12-27 07:32:04 +0000
  • f087707c2c [!] fixed : issue #6782 ( typedVar works very slowly ) SND\kernelnet_cp 2010-12-27 07:04:18 +0000
  • b94835d808 [~] removed unnecessary calls addr64 SND\EreTIk_cp 2010-12-24 16:19:43 +0000
  • 7220df31bf [~] functional printobjtable.py expanded and moved to ntobj.py [~] modules ntobj.py and phidecheck.py moved into snippets SND\EreTIk_cp 2010-12-24 11:38:48 +0000
  • d766568252 [*] output int as unsigned SND\EreTIk_cp 2010-12-23 12:01:46 +0000
  • 5968cf04a1 [*] syntax SND\EreTIk_cp 2010-12-23 11:59:20 +0000
  • a256bf682d [*] fix: committed wrong file SND\EreTIk_cp 2010-12-23 11:56:03 +0000
  • 326daca391 [+] check for hidden processes: compare content of PspCidTable table and PsActiveProcessHead list SND\EreTIk_cp 2010-12-23 11:13:09 +0000
  • 0b089bbfa3 + test for ntobj.getType and ntobj.getListByHandleTable : print objects (and type) from handle table SND\EreTIk_cp 2010-12-23 11:11:46 +0000
  • 0fdc0e1c1f [+] module for work with NT Object tree manager: * get object type - ntobj.getType(p) * build object list from handle table - ntobj.getListByHandleTable(pHandleTable, pType=0, bContainHeaders=True) SND\EreTIk_cp 2010-12-23 11:10:08 +0000
  • c486a6c782 [+] added : ptrMWord, ptrSignMWord for reading target's machine word ( 32 or 64 bits ) from memory SND\kernelnet_cp 2010-12-20 16:46:21 +0000
  • ca6c731376 [+] added : go, stepin, stepover routine for control execution [+] added : dbgBreakpointClass class for control breakpoints SND\kernelnet_cp 2010-12-14 16:14:14 +0000
  • ee971fa0e9 git-svn-id: https://pykd.svn.codeplex.com/svn@58081 9b283d60-5439-405e-af05-b73fd8c4d996 SND\kernelnet_cp 2010-11-26 15:30:22 +0000
  • 470e376d73 [+] added : getCurrentPorcess, setCurrentProcess routines SND\kernelnet_cp 2010-11-26 15:26:00 +0000
  • a5fd4481fe [!] fixed: loadModule return None for non existin module with out outputing error message SND\kernelnet_cp 2010-11-26 14:03:25 +0000
  • 40960bd9b7 [+] added : getProcessorMode, setProcessorMode routines; SND\kernelnet_cp 2010-11-26 13:55:09 +0000
  • 5cff86598c [!] re-commit SND\kernelnet_cp 2010-11-26 11:53:20 +0000
  • ea3dad282d [+] added : sample stacks.py SND\kernelnet_cp 2010-11-26 11:47:57 +0000
  • b6eaf03db1 [+] added: getThreadList routine; returns thread object's ptr list SND\kernelnet_cp 2010-11-26 11:25:41 +0000
  • 347a43d194 [!] fixed : loadTypedVar for unnamed union tag ::<unnamed-tag> [!] fixed : loadMemory does not throw exception and return false SND\kernelnet_cp 2010-11-25 16:13:30 +0000
  • c1db435c56 [!] bug fixed: issue #7727 ( loadUnicodeString returns empty string ) SND\kernelnet_cp 2010-11-23 08:14:21 +0000
  • 56110ea78f [!] snippets fixed SND\kernelnet_cp 2010-11-22 16:02:26 +0000
  • ed85fb9787 [+] added: isKernelDebugging routine SND\kernelnet_cp 2010-11-22 15:10:25 +0000
  • 533bb27764 [+] added: windbg snippet displaying IAT for module SND\kernelnet_cp 2010-11-22 11:47:51 +0000
  • 815db55c6a [!] bug fixed: findModule does not work for address < 4GB SND\kernelnet_cp 2010-11-22 11:39:40 +0000
  • ec4432429c git-svn-id: https://pykd.svn.codeplex.com/svn@57923 9b283d60-5439-405e-af05-b73fd8c4d996 SND\kernelnet_cp 2010-11-22 09:11:19 +0000
  • 29c4e0af81 [!] snippets fixed SND\kernelnet_cp 2010-11-22 09:01:40 +0000
  • 17c51fac01 [!] bug fixed: issue #7717 ( !py command failed to find standart modules ) [!] bug fixed: issue #7718 ( sys.argv[0] does not contain script name ) SND\kernelnet_cp 2010-11-22 08:47:24 +0000
  • 2599f9885f [!] bug fixed: issue #7697 ( raw_input does not work ) SND\kernelnet_cp 2010-11-22 07:47:59 +0000
  • 55040a78e3 [+] added: windbgIn windbgOut class for redirecting in/out from stdin/stdout SND\kernelnet_cp 2010-11-19 15:51:19 +0000
  • 1c7a05bec3 [!] bug fixed: issue #7688 ( dbgIsSessionStart returns false after dbgCreateSession call ) SND\kernelnet_cp 2010-11-18 16:20:12 +0000
  • 54d2081257 git-svn-id: https://pykd.svn.codeplex.com/svn@57436 9b283d60-5439-405e-af05-b73fd8c4d996 SND\kernelnet_cp 2010-11-12 16:10:46 +0000
  • 39a14ab66b [[+] added: windbg snippet displaying list of export for module SND\kernelnet_cp 2010-11-12 16:03:03 +0000
  • 2929128d54 [!] bug fixed: issue #7623 ( memory routines failed to work at wow64 application ) SND\kernelnet_cp 2010-11-12 15:58:13 +0000
  • d2632027f5 [!] snippet "export" fixed SND\kernelnet_cp 2010-11-09 10:01:34 +0000
  • 5101d95766 [+] added: windbg snippet displaying list of export for module SND\kernelnet_cp 2010-11-09 09:51:19 +0000
  • 69e93336d9 [+] added: loadCStr, loadWStr routine added ( loading c-style string ) SND\kernelnet_cp 2010-11-09 09:33:19 +0000
  • d389e26054 [!] typedVar routine fixed: loading array of complex type SND\kernelnet_cp 2010-11-09 09:32:12 +0000
  • bea30af123 [!] snippet GDT fixed SND\kernelnet_cp 2010-11-08 07:06:00 +0000
  • 1164af7442 ready for release SND\kernelnet_cp 2010-11-03 06:51:09 +0000
  • a516f13ef1 [+] added: windbg snippet displaying GDT SND\kernelnet_cp 2010-11-01 11:08:46 +0000
  • 29c16ff927 [+] added: windbg snippet displaying VMCS structure ( Intel-VT virtualization context ) SND\kernelnet_cp 2010-11-01 09:05:36 +0000
  • 3eb6130c69 [!] bug fixed: issue #7528 ( loadBytes raises error "did not match C++ signature" ) SND\kernelnet_cp 2010-11-01 07:53:55 +0000
  • be9c033e9f [+] added: windbg snippet displaying CR0 register SND\kernelnet_cp 2010-10-28 09:06:43 +0000
  • 639b5df6b3 [+] added: windbg snippet displaying CR4 register SND\kernelnet_cp 2010-10-28 08:04:01 +0000
  • 597af76fd6 [+] added: !py windbg command can work without python script file extension ".py" SND\kernelnet_cp 2010-10-28 05:59:57 +0000
  • 58953f5a81 ready for release SND\kernelnet_cp 2010-10-27 06:28:12 +0000
  • 7831603e21 [+] added: physical memory read support ( for loadBytes, loadWords etc) SND\kernelnet_cp 2010-10-26 13:44:19 +0000
  • 477da2e29f [+] added: !pythonpath windbg command - print enviroment var $pythonpath [+] added: !py windbg command uses $pythonpath var for search scripts SND\kernelnet_cp 2010-10-25 07:54:10 +0000
  • f8341a1a6d [+] added: ptrSize routine ( returns pointer's size at the target platform ) SND\kernelnet_cp 2010-09-15 11:40:35 +0000
  • eff19ff608 [!] bug fixed: issue #7164 ( loadTypedVarList can fall in infinite loop ) SND\kernelnet_cp 2010-09-14 10:15:28 +0000
  • eba80f2426 [+] added: sizeof routine ( returns size of type ) [+] added: sizeof method for typedVarClass ( return size of var in memory ) SND\kernelnet_cp 2010-09-14 09:09:15 +0000
  • 51f2adb195 ready for release SND\kernelnet_cp 2010-08-20 12:19:22 +0000
  • 68b73e99c4 [+] added: version infi resource SND\kernelnet_cp 2010-08-20 12:18:30 +0000
  • 0bfbcf2390 [+] added: getImplicitThread routine( get address of the current thread ) [+] added: setImplicitThread routine ( change current thread context ) [+] added: dbgStackFrameClass class ( information about stack frame ) [+] added: getCurrentStack routine ( get current stack as collections of dbgStackFrameClass object ) SND\kernelnet_cp 2010-08-20 12:09:45 +0000
  • d2e5dacb50 [+] added: loadLinkedList routine [+] added: getPdbFile routine [+] added: reloadSymbols SND\kernelnet_cp 2010-08-16 15:04:22 +0000
  • f5286ff2e8 [!] bug fixed: issue #6862 ( loadUnicodeString for x64 target does not work ) SND\kernelnet_cp 2010-08-12 12:35:35 +0000
  • 9cc359b816 ready for release SND\kernelnet_cp 2010-08-09 14:28:00 +0000
  • 0f9c2e1e2c [+] added: dbgExtensionClass class for calling windbg extension command from python script SND\kernelnet_cp 2010-08-09 07:28:59 +0000
  • 26b5fb69a1 [!] bug fixed: issue #6812 ( windbg ext command !py does not work with full path ) SND\kernelnet_cp 2010-08-05 17:05:35 +0000
  • 6e7d492e18 [+] added: !pycmd command for windbg extension SND\kernelnet_cp 2010-08-04 15:26:17 +0000
  • 6ee2fc538f ready for release SND\kernelnet_cp 2010-08-03 10:21:48 +0000
  • 8c58567865 [!] bug fixed: #6769 Args parsing is not supporting quoting SND\kernelnet_cp 2010-08-03 10:18:44 +0000
  • 7c64eff59e [+] added: proclist.py sample SND\kernelnet_cp 2010-07-29 17:49:35 +0000