New Post: is module baseaddr prefix normal?
from pykd import * attachKernel() nt = module( "nt" ) print "%x" % nt.begin() it prints "ffffffff804d8000", but my system is 32bit, and the baseaddr is 0x804d8000 is the "ffffffff" prefix normal in...
View ArticleNew Post: is module baseaddr prefix normal?
pykd works only with 64 bit address ( there are some reasons ), so we use "address normalization" for 4 bytes address. You can use these addresses with windbg, it is ok. All pykd API routines return...
View ArticleNew Post: Can PyKD be used in Visual Studo debugger?
Can PyKD be used in Visual Studo debugger?".load <path>\pykd.pyd" seems to succeed, but then any commands, like "!py help" just cause debugger to enter run mode and nothing more happens. It this...
View ArticleNew Post: Can PyKD be used in Visual Studo debugger?
The simple answer is no :)) I know one case of using pykd with VS: VS2012 and driver debugging. You can load pykd and use it with immidiate debugger. But It is extremely uncomfortable. WinDBG for...
View ArticleSource code checked in, #85967
[0.2.x] fixed : issue #12353 ( typedVar for bit field returns a wrong result for width >= 32 bits )
View ArticleSource code checked in, #86003
[0.2.x] fixed: module("mymod").queryVersion(""), AV-exception
View ArticleSource code checked in, #86005
[0.3.x] added : !py command commandline arguments ( -g -l -h )
View ArticleCommented Unassigned: BaseException: File: .\dia\symexport.cpp Line: 103 TODO...
>>> a=typedVar("QtCore4!QString",reg("eax"))Traceback (most recent call last): File "<console>", line 1, in <module>BaseException: File: .\dia\symexport.cpp Line: 103...
View ArticleCommented Unassigned: BaseException: File: .\dia\symexport.cpp Line: 103 TODO...
>>> a=typedVar("QtCore4!QString",reg("eax"))Traceback (most recent call last): File "<console>", line 1, in <module>BaseException: File: .\dia\symexport.cpp Line: 103...
View ArticleSource code checked in, #86120
[0.2.x] added : startProcess routine extra parameter debugChildren [0.2.x] fixed : killProcess correctly detaching from target now
View ArticleSource code checked in, #86121
[0.3.x] added : startProcess extra parameter debugChildren
View ArticleReleased: PYKD 0.2.0.25 (окт 22, 2013)
fixed : issue #12335 TypeError: object has no len() for arrayfixed : issue #12324 windbg crash after exception in the multithreading scriptadded: debug access enumSpecial Fix: IPython adaptation! If...
View ArticleUpdated Release: PYKD 0.2.0.25 (окт 22, 2013)
fixed : issue #12335 TypeError: object has no len() for arrayfixed : issue #12324 windbg crash after exception in the multithreading scriptadded: debug access enumSpecial Fix:IPython adaptation!If you...
View ArticleSource code checked in, #86269
[0.2.x] added : detachAllProcesses ( detach from all process and resume all their threads ) [0.2.x] added : killAllProcesses ( detach from all process then terminate them )
View ArticleSource code checked in, #86270
[0.3.x] added : detachAllProcesses ( detach from all process and resume all their threads ) [0.3.x] added : killAllProcesses ( detach from all process then terminate them )
View ArticleReleased: PYKD 0.2.0.26 (ноя 05, 2013)
fixed : issue #12353 typedVar for bit field returns a wrong result for width >= 32 bitsfixed: queryVersion("") method raises AV-exception fixed : killProcess correctly detaching from target now...
View ArticleUpdated Release: PYKD 0.2.0.26 (ноя 05, 2013)
fixed : issue #12353 typedVar for bit field returns a wrong result for width >= 32 bitsfixed: queryVersion("") method raises AV-exceptionfixed : killProcess correctly detaching from target nowadded...
View Article