IridiumXOR

Thanks to all for the replies :) Yes, it is not an easy work because Miasm is obviously based on MiasmIR. However, how much different are MiasmIR and GhidraIR? If...

I have assumed to use the same technique used for memory access (call the memory() function implemented in python) and I followed also the same strategy already used for the...

Look here [https://github.com/cea-sec/miasm/blob/218492cd10b339a8d47d2fdbd61953fcf954fb8b/miasm/ir/translators/C.py#L178](https://github.com/cea-sec/miasm/blob/218492cd10b339a8d47d2fdbd61953fcf954fb8b/miasm/ir/translators/C.py#L178) the C translator converts the cntleadzeros in a function call (a call to bignum() function). In python I have implemented the same strategy.

I'm experimenting the same issue... please can you help us?

Done :) please check my patch

> There was another student that did some work on this but unfortunately never got far enough to commit it. I've added @npetroni since I believe he was more aware...

If I understand correctly, an automagic layer, after it has identified the dump as a dump of the OS XXX, it appends to the context the symbol table relative to...

``` panda = Panda(arch="x86_64", mem=str(args.mem), extra_args=args.extra_args,expect_prompt=args.prompt,serial_kwargs={"unansi": False}) @panda.queue_blocking def run_cmd(): # Restore snapshot if args.loadvm: print(f"Restoring snapshot {args.loadvm}...") panda.revert_sync(args.loadvm) # Take snapshot of the disk if time is passed if...

If I use ```panda.run_monitor_cmd(f"savevm {args.record}")``` instead ```panda.snap()``` it works correctly... it is a bug in ```panda.snap()``` implementation?

This problem affect also the use of Volatility 3 in tools like [PANDA](https://github.com/panda-re/panda).