python-haystack

python-haystack copied to clipboard

https://twitter.com/kaitai_io http://kaitai.io/ https://github.com/kaitai-io/kaitai_struct Would be nice to be able to have a Application level viewer. https://twitter.com/halvarflake/status/955484553744928768 But it seems like the better way would be to use ctypeslib->KaitaiStruct ...

trolldbois

Leverage the spectre vuln ?

trolldbois

Make frida-re PoC

3

http://www.frida.re/docs/usage/

trolldbois

Suggestion: Parsing from shared memory ?

2

Just a idea. At the moment Haystack parses a memory dump in a file. Maybe it would be great, to map a process memory, and then directly parse it without...

rchateauneu

https://github.com/coelias/Pynteractive D3.js

trolldbois

What about using layered neural nets for structure reversal. Resolution improves as layer deepens.

trolldbois

- [ ] Move reverse to a different source tree - [ ] Move GUI to a different source tree

trolldbois

https://sensepost.com/blog/2017/painless-intro-to-the-linux-userland-heap-and-heap-fengshui/

trolldbois

List HEAP structures found in memdump that do not pass validation and/or that are not listed in PEB. These heaps are probably "deleted" memory. If the mapping is rebased to...

trolldbois

New Tool (see state of art) INPUTs: + Memory dump + target graph signature of that application OUTPUT: + structure content Work needed: + define a signature format + port...

trolldbois