Axel Souchet

All right, I had some time to check out this issue after work. The TL'DR is that it seems like HEVD's `PAGE` section is paged out on your dump. Here...

Interesting! Something that might be confusing is that every backend is meant to run Windows code; KVM included. Dumping / running / fuzzing Linux code is not supported. If you're...

I'll close this as the original issue was fixed! Cheers

There's a similar case with the bytes '\x62' in the below case: ```c++ default: switch (GV.OperandSize) { case 16: #ifndef BEA_LIGHT_DISASSEMBLY (void)strcpy((char *)pMyOperand->OpMnemonic + i, Registers16Bits[index]); ``` `index` is out-of-bounds:...

Same with '\x4f' in: ```c++ case 64: #ifndef BEA_LIGHT_DISASSEMBLY (void)strcpy((char *)pMyOperand->OpMnemonic + i, Registers64Bits[index]); ``` ``` 08 00000095`2f9fcf50 00007ff6`444c2f2a rp_win_x64!fillRegister(int index = 0n30, struct OPTYPE * pMyOperand = 0x00000095`2f9fe600, struct...

Oh my - this is awesome! I can't wait to try this out / merge it in. I'm going to have to send you a crate of beer or something.....

Closing this as superseded by #192

Awesome, all of those seem like great ideas - will try to implement those in the next month or so :) Cheers On Sun, Dec 25, 2022 at 10:46 PM...

Hey @Ceiridge, I haven't forgotten about this; I had some free time this w-e so I started working on it. I've drafted the `--ranges` feature in https://github.com/0vercl0k/lockmem/commit/bc950551f0de974103e32186c97af833c7ce849e (binaries from the...

Some updates, I have a first draft for handling stacks and handle better all those range filters via an interval tree. It uses boost which is way bigger than I'd...