TA的每日心情 | 开心
2022-4-13 11:47 |
|---|
签到天数: 1 天 [LV.1]初来乍到
|
发表于 2022-11-30 15:15:18
|
显示全部楼层
|
Process.setExceptionHandler(function (details) { switch (details.type) { case "breakpoint": console.log("\n", "setExceptionHandler ==> address: ", details.address); console.error(JSON.stringify(details)); console.warn("RVA: ", details.address.sub(editor.base)); // console.log("eip[0]: " + ptr(Memory.readU8(details.context.eip))); // restore //Memory.writeU8(sub_patchaddr, 0x55); Memory.writeU8(sub_patchaddr, cc_origin); console.warn("eip[0]: " + ptr(Memory.readU8(details.context.eip))); console.log("eip: ", details.context.eip); console.log("pc: ", details.context.pc); console.log("eax: ", details.context.eax); // details.context.eax = 0xDB; details.context.eip = ptr(details.context.eip).add(0x7); console.warn("eax: ", details.context.eax); console.warn("eip: ", details.context.eip); console.warn("pc: ", details.context.pc); // int3 0xCC Memory.protect(sub_patchaddr, 1, 'rwx'); Memory.writeU8(sub_patchaddr, 0xcc); console.log("Process.isDebuggerAttached() = " + Process.isDebuggerAttached()); return true; break; case "abort": break; case "access-violation": break; case "guard-page": break; case "illegal-instruction": break; case "stack-overflow": break; case "arithmetic": break; case "single-step": break; case "system": break; default: break; } }); |
|
楼主: dryzh
[复制链接]
IP卡
发表于 2022-11-30 11:46:02
显身卡
发表于 2022-11-30 11:47:44
发表于 2022-11-30 11:52:53
