Live x86 Code Instrumentation with Frida
 Ole Andre Vadla Ravnaas (oleavr) <oleavr gmail com> |
Monday, July 19 2010 17:38.27 CDT |
Thought this might be of interest to you fellow reversers:
http://blog.kalleberg.org/post/833101026/live-x86-code-instrumentation-with-frida
If you want to dive straight in and play with the code, you'll need:
- MS Visual Studio 2010
- Mercurial: http://mercurial.selenic.com/
Then:
- hg clone https://frida-ire.googlecode.com/hg/ frida-ire
- Open frida-ire\zed\zed.sln
- Build in Debug|Win32
- Launch the "zed" project
- Log in using any Jabber account, like GMail, or create a new one at https://register.jabber.org/
- Start typing the name of the process you want to attach to, and off you go
PS: There are some knowns issues with Stalker on pure 32 bit systems, so for now, please make sure you're running 64 bit Windows -- but only attach to 32 bit processes for now :-)
Comments
| Posted: Wednesday, December 31 1969 18:00.00 CST | |