| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Convert to src-layout ta/nix | Theofilos Augoustis | 2025-10-14 | 1 | -834/+0 |
| | | |||||
| * | Remove trailing whitespace | Duncan Ogilvie | 2024-01-06 | 1 | -9/+9 |
| | | |||||
| * | ImpRec: recover_import without alignment hypothesis | Camille Mougey | 2023-04-24 | 1 | -12/+28 |
| | | |||||
| * | ImpRec: fix the search to actually use the ptrsize | Camille Mougey | 2023-04-24 | 1 | -1/+1 |
| | | |||||
| * | Add a "generic" import recovery strategy based on ImpRec | Camille Mougey | 2023-04-23 | 1 | -0/+121 |
| | | |||||
| * | Remove duplicated ordinals in get_export_name_addr_list | Ana María Martínez Gómez | 2020-08-19 | 1 | -10/+5 |
| | | | | | | | | | | | | | | | | | | | | | Remove duplicated ordinals in `miasm.jitter.loader.pe.get_export_name_addr_list` and update documentation to include ordinals. Ordinal exports are added twice and consequently duplicated in the output. For example, for `Lab17-02.dll` from https://github.com/mikesiko/PracticalMalwareAnalysis-Labs: ``` [('InstallRT', 268490823), ('InstallSA', 268492481), ('InstallSB', 268494994), ('PSLIST', 268464165), ('ServiceMain', 268488496), ('StartEXS', 268467915), ('UninstallRT', 268497925), ('UninstallSA', 268495365), ('UninstallSB', 268497208), (1, 268490823), (2, 268492481), (3, 268494994), (4, 268464165), (5, 268488496), (6, 268467915), (7, 268497925), (8, 268495365), (9, 268497208), (1, 268490823), (2, 268492481), (3, 268494994), (4, 268464165), (5, 268488496), (6, 268467915), (7, 268497925), (8, 268495365), (9, 268497208)] ``` | ||||
| * | Fix get_export_name_addr_list when there are no exports | Ana María Martínez Gómez | 2020-08-18 | 1 | -0/+3 |
| | | | | | | | | | | | | If there are no exports, calling to `get_export_name_addr_list` raises an exception at `miasm/jitter/loader/pe.py`, line 152: ``` AttributeError: 'DirExport' object has no attribute 'f_names' ``` Return an empty list instead. | ||||
| * | Add pe pages to allocated_pages | Fabrice Desclaux | 2020-04-20 | 1 | -2/+9 |
| | | |||||
| * | jitter.loader.pe: add docstrings for import/export accessors | Willi Ballenthin | 2020-01-10 | 1 | -2/+31 |
| | | |||||
| * | normalization of log messages (#1112) | Sheidan | 2019-12-20 | 1 | -1/+1 |
| | | | | | | | * normalization of log messages * -8s in format | ||||
| * | PE: API returns None on bad traduction addreses | Fabrice Desclaux | 2019-11-25 | 1 | -2/+6 |
| | | |||||
| * | Loader/Pe: fix py2/py3 str | Fabrice Desclaux | 2019-11-25 | 1 | -6/+2 |
| | | |||||
| * | Clear get_str_* API | Fabrice Desclaux | 2019-11-12 | 1 | -28/+119 |
| | | | | | | | | | | | | | | | | | get_str_ansi decoded strings using utf8 and was blindly used for pure windows function (LoadLibraryA) and for stdlib functions (printf, strlen, ...) even if strlen does not use utf8... New API is: get_win_str_a/get_win_str_w and set_win_str_a/set_win_str_w for windows (respectively codepage1252/windows utf16) .Those functions should only be used in windows strings manipulations, so there are taken out of the jitter. get_c_str/set_c_str: as those functions are "classic" in OSes, they are keeped in the jitter. | ||||
| * | Fix bytes dllname | Fabrice Desclaux | 2019-09-22 | 1 | -2/+6 |
| | | |||||
| * | Loader: add exception in vm2pe for PC < image base | William Bruneau | 2019-09-20 | 1 | -1/+4 |
| | | |||||
| * | Fix str/bytes handling in pe loader | Caroline Leman | 2019-08-08 | 1 | -3/+3 |
| | | |||||
| * | Rename elfesteem loader | Fabrice Desclaux | 2019-03-05 | 1 | -3/+3 |
| | | |||||
| * | Include elfesteem fork in miasm | Pierre LALET | 2019-03-05 | 1 | -3/+3 |
| | | |||||
| * | Rename miasm2 to miasm | Fabrice Desclaux | 2019-03-05 | 1 | -0/+565 |