a Small project I've been working on for a long time called Sin32 which is a LPC/(L)RPC server
If you want to know more about LPC see j00ru's posting about csrss, or my Posting about minimal RPC,or my various posts about Sin32 on http://www.woodmann.com .
I recently found this open source gem called boomerang that decompiles code to C++ and asm, but not only that it dose data flow and type analysis..but it was lacking the ability to do this dynamically,and seeing how it uses mapped sections anyways to analyze PE's, to move it a small step forward and maake it dynamicly analyze the PE as its running and analyze it, is going to be quite the venture..
This code is 'going to be' completely NATIVE eventually..I want my code to be 'almost' kernel mode compatible... ;}
But I am making this Open source while I work on it, and would like to encourage contributors..
Anyone with the knowledge and time,much more updates to come...
Source can be located at http://code.google.com/p/sin32boomerang ... runk/SIN32..
regards..
If you want to know more about LPC see j00ru's posting about csrss, or my Posting about minimal RPC,or my various posts about Sin32 on http://www.woodmann.com .
I recently found this open source gem called boomerang that decompiles code to C++ and asm, but not only that it dose data flow and type analysis..but it was lacking the ability to do this dynamically,and seeing how it uses mapped sections anyways to analyze PE's, to move it a small step forward and maake it dynamicly analyze the PE as its running and analyze it, is going to be quite the venture..
This code is 'going to be' completely NATIVE eventually..I want my code to be 'almost' kernel mode compatible... ;}
But I am making this Open source while I work on it, and would like to encourage contributors..
Anyone with the knowledge and time,much more updates to come...
Source can be located at http://code.google.com/p/sin32boomerang ... runk/SIN32..
regards..
