DKing
DKing
I checked and found the kernel of Jiayu S3 already patched. Thanks.
``` mkdir src mv goserver src mv goclient src export GOPATH=`pwd` make server ```
Any hints for reversing offsets from ntoskrnl? I would like to help if I know how to. EDIT: I think I found them. will update later or maybe create a...
Managed to recover offsets and patterns but still BSOD at test case RemoteMem. see #398 @boris768 any idea for the bug at RemoteMem? btw, KExecOpt is 0x283
No, this is not #724. The main idea of infinite scrolling is to reduce interruptions, so user don't have to wait another minute for another batch, which can be done...
To verify you can skip the forwarder part and have a quick test. It should take only 5 minutes to setup.
> @DKingAlpha I'm looking at the code and `loadbase = 0x60000000 if f.armv7 else 0x7100000000` is the base always the same for every switch nso? I dont know about it
I had the exact same crash at libcef.so+0x1c03824 ``` 0000000001c03820: 1c03820: 55 push rbp 1c03821: 48 89 e5 mov rbp,rsp 1c03824: c6 04 25 39 00 00 00 mov BYTE...
我也是API Key被盗了。这个key只有网站这里使用。网站的访问量很少,应该是key被泄露了。可能得审计下docker环境。
> > 我也是API Key被盗了。这个key只有网站这里使用。网站的访问量很少,应该是key被泄露了。可能得审计下docker环境。 > > 配置访问权限,这个项目一开源就被人扫描 刚才查本机nginx转发日志没有异常访问日志,因为nginx套了basic auth。但查了下服务器流量,跟泄露时间段吻合,大概定位到泄露原因了。 docker的端口-p是直接映射到本机0.0.0.0的,应该是http无限制接口侧漏了。 @Chanzhaoyu 建议考虑优化REAME里的docker端口转发指导。 `-p 127.0.0.1:3002:3002`应该就够了