OpenRCE

📚 OpenRCE is preserved as a read-only archive. Launched at RECon Montreal in 2005. Registration and posting are disabled.

About Articles Book Store Distributed RCE Downloads Event Calendar Forums Live Discussion Reference Library RSS Feeds Search Users What's New

Customize Theme

Flag: Tornado! Hurricane!

Topic created on: May 22, 2007 12:39 CDT by pedram .

To better organize bug management and give bleeding edge access to anyone interested, PaiMei now lives on a Trac project at:

http://paimei.openrce.org/

We're still working on filling out the wiki but this is the new permanent home for PaiMei distribution, documentation, etc... Please open new bug tickets through the site. The source is updated hourly from an internal SVN server. To download the entire trunk as a compressed archive go to "Browse Source", select "trunk" then scroll to the bottom and hit the link "Download in other formats: Zip Archive".

Please note that undocumented scripts within the SVN repository may not (and probably will not) work. The remote debugging is also currently broken though underdevelopment. The main development branch is Cameron's work on moving PIDA to SQL storage, it is called BakMei. Development of a new GUI taking advantage of WxPythons latest widget set, Wx.AUI, will commence soon. The combination of a new GUI and SQL backend will be PaiMei 2.0.

jms		May 22, 2007 14:16.04 CDT
Awesome keep up the great work guys!

c1de0x		September 20, 2007 13:29.16 CDT
Is it possible to SVN update against some public SVN?

jms		September 20, 2007 14:38.21 CDT
I don't think so, you will most likely have to grab the source zip from the Trac site.

pedram		September 22, 2007 12:16.47 CDT
I'll set this up at some point in the future, but as JMS says. There is no public SVN access at this point.

c1de0x		September 23, 2007 00:48.16 CDT
ok.... Btw: I grabbed the zip from the trac, but can't get it to work with Python 2.5. Is this a known issue?

jms		September 23, 2007 02:49.24 CDT
Hmmm can you cut-paste the error? There may have been problems with a struct I defined for the port to PID mapping. Cut and paste here and I will take a look at it.

c1de0x		September 23, 2007 04:16.53 CDT
Ok... After rechecking, it appears that the error occurs in both python 2.44 and 2.51. I'm using SVN revision 233 taken from the trac site. The error is: looking for PaiMei -> PyDbg ... Traceback (most recent call last): File "__install_requirements.py", line 113, in ? import pydbg File "w:\tools\debuggers\PaiMei\r223\pydbg\__init__.py", line 41, in ? from defines import * File "w:\tools\debuggers\PaiMei\r223\pydbg\defines.py", line 99, in ? class MIB_TCPTABLE_OWNER_PID(Structure): AttributeError: type object '_MIB_TCPROW_OWNER_PID_Array_512' has no attribute '_fields_' (I disabled the try/except in __install_requirements.py so that I could tell what the failure was) It also looks like there is a problem in the line: os.system("start installers/PaiMei-1.1.win32.exe") __build_installer.bat generates dist/PaiMei-1.2.win32.exe, not installers/PaiMei-1.1.win32.exe. Another thing: the __setup_mysql.py script sets DEFAULT on text columns. This is considered an error when mysql STRICT mode is on (which is the default for a new install). See http://bugs.mysql.com/bug.php?id=19498. Perhaps the script should be updated to not fail on a default mysql install??? BTW: In the end I managed to get an older version of paimei to work (r122), but I had to roll back my idapython installation to 2.4 as well :( Thanks, c1de0x

jms		September 23, 2007 04:34.12 CDT
Yeah this is my struct causing you this pain, I am really not sure why under 2.5 it doesn't work. What you will notice is that PaiMei is stated as 2.4 compatible, generally when I (not speaking for Pedram or his team) develop pydbg code I do it under 2.4 to be sure. When I get a chance I will try to figure out why 2.5 complains, sorry about the inconvenience.

c1de0x		September 23, 2007 04:41.18 CDT
Note... this is failing under 2.4 as well!

jms		September 23, 2007 11:59.03 CDT
Did you fully uninstall 2.5? I tested it as well as Pedram, and we didn't have any problems. I guess I will be taking a look at this today.

pedram		September 24, 2007 16:48.46 CDT
The SQL statements are indeed not very friendly across installs. I need to automatically create the tables in the future "installer" (we need a real installer too). With the other issue. I'd debug it if I could reproduce it, but since I can't follow these steps to see if we can narrow down the issue. I suspect the issue is somewhere further "up" in the file. So start commenting out some of the lines to see if you can make the "fields" error go away. Let me know what you come up with.

gimpy21		September 25, 2007 17:23.16 CDT
I too am having the same problem using Python 2.5 and PaiMei revision 233. It appears to be in the ctypes code. If I comment out the create of the _MIB_TCPROW_OWNER_PID and the classes who implement it, I get to a different error regarding python24.dll and such with pydasm (a different matter as I have several installed I think). Perhaps it is a problem with differing versions of ctypes? I am using ctypes v1.0.1 with Python v2.5.0.

gimpy21		October 16, 2007 18:04.15 CDT
bump Is this still unresolved? I know the devs are busy, but having an official 2.5 build would really help a lot of people. I'm by no means bitching. I'm just anxious to fire it up!

pedram		October 16, 2007 18:40.36 CDT
Not quite yet.... But maybe this week. I still haven't updated to 2.5 myself is the real problem. Alternatively you could fix and submit a patch, complete the OSS cycle ;-)

gimpy21		October 16, 2007 20:42.39 CDT
I thought I traced it into ctypes.Structure, but was taken back by not fully comprehending the underlying layout. Perhaps I will beat you to the fix :p Thanks for the quick reply btw.

jms		October 17, 2007 23:42.55 CDT
Damn, alright I will look at this tonight, I have some other stuff to wrap up first. I am assuming this is a pure Python 2.5 install with no 2.4 support right? And yes feel free to submit patches :)

Note: Registration is required to post to the forums.

There are 31,328 total registered users.

Recently Created Topics
[help] Unpacking VMP...	Mar/12
Reverse Engineering ...	Jul/06
let 'IDAPython' impo...	Sep/24
set 'IDAPython' as t...	Sep/24
GuessType return une...	Sep/20
About retrieving the...	Sep/07
How to find specific...	Aug/15
How to get data depe...	Jul/07
Identify RVA data in...	May/06
Question about memor...	Dec/12

Recent Forum Posts
Finding the procedur...	rolEYder
Question about debbu...	rolEYder
Identify RVA data in...	sohlow
let 'IDAPython' impo...	sohlow
How to find specific...	hackgreti
Problem with ollydbg	sh3dow
How can I write olly...	sh3dow
New LoadMAP plugin v...	mefisto...
Intel pin in loaded ...	djnemo
OOP_RE tool available?	Bl4ckm4n

Recent Blog Entries
	halsten	Mar/14
Breaking IonCUBE VM
	oleavr	Oct/24
Anatomy of a code tracer
	hasherezade	Sep/24
IAT Patcher - new tool for ...
	oleavr	Aug/27
CryptoShark: code tracer ba...
	oleavr	Jun/25
Build a debugger in 5 minutes
More ...

Recent Blog Comments
	nieo on:	Mar/22
IAT Patcher - new tool for ...
	djnemo on:	Nov/17
Kernel debugger vs user mod...
	acel on:	Nov/14
Kernel debugger vs user mod...
	pedram on:	Dec/21
frida.github.io: scriptable...
	capadleman on:	Jun/19
Using NtCreateThreadEx for ...
More ...

Imagery

SoySauce Blueprint
Jun 6, 2008

View Gallery (11) / Submit