Axel Souchet

My understanding is that kernel32 (as well as other dlls) are loaded at the same base across processes to maximize memory sharing (at least on a default install). Cheers Le...

I am familiar with how copy-on-write and how virtual memory works. Boot a Windows 10 machine, open ProcessHacker2 on 5 different processes and notice `kernel32` having the same VA in...

No symbols seem available for the `dbgeng` version yet... ``` 0:000> lmvm dbgeng Browse full module list start end module name 00000001`80000000 00000001`80889000 dbgeng (no symbols) Loaded symbol image file:...

After making a bunch of tests in `fbl_kern`, I initially thought accessing those pages from kernel-mode with a driver would page in the content of the section; it seems to...

So I confirmed that this is the only section with this behavior on my system, so special-casing seems to work. Now I still need to figure out if wrapping sections...

Hey there - sorry for the lag! I'm not planning to add support for AVR, the disassembly libraries I've been using doesn't support those anyway. I'll be closing this then!...

+1 Le lun. 23 juil. 2018 à 09:38, ivanfratric a écrit : > I think it's a great idea :-) > > — > You are receiving this because you...

Hey @donghyunlee00, Not quite sure about the 'when' so I would recommend to grep for 32b and go through the closed issues; it should give you enough background to get...

If you look closely at the stats output, you can notice that you have `cov: 0` which indicates that either the 127 inputs in your corpus triggered 0 useful coverage...

I think there's something you are misunderstanding - in order for the hypervisor backend to be able to collect coverage, they simply set software breakpoints on the beginning of every...