Light

oowoodone / vmp_odplugin Goto Github PK

View Code? Open in Web Editor NEW

91.0 10.0 58.0 83 KB

VMProtect OD Plugin

C++ 97.84% C 2.16%

vmp_odplugin's Introduction

VMP_ODPlugin

VMProtect OD Plugin

Use to analyse vmp handlers and some other operations.

Analyse: 分析handler、入口的vmcode以及一些其他的基本信息。

Patch Hash：调用一个自己写的ODScript，生成PatchHash后的文件（成功率未知。。）

To OEP：到达OEP，并且处理一些Antidump（也是调用自己写的ODScript，成功率未知）

Fix API：修复API，分某个地址和整个区段（在要修复的位置右键菜单）

Analyse code：分析vmcode，需要输入esi（也就是vm_eip）

vmp_odplugin's People

Contributors

Stargazers

Watchers

Forkers

pai-po uvbs jaydenhe heruix jokerni zhaooptimus yodamaster undefinedidentifier fatty- 453483289 jackbro yang123vc ombhrum zcddtb tmzaw kungia09 ahmadmansoor f0829 samcbc warshon shuixi2013 whyliuxing gavz peterg75 a-new yanmovfer l4ys fruitg fengjixuchui explife0011 fcccode scriptsboy hmyit kbugstar sjhgithub woozoo86 n1c0l4sbrz neoz xuan2261 jiweihong dosnow zhangergaici redxhawk crackercat kingking888 breathleas fqr2001 g6kg coders-vechai mfkiwl alisacodedragon 2274254 chaidy pklong007 azraelbillie

vmp_odplugin's Issues

有个貌似bug的问题想请教一下

很感谢你开源这套源码，给我从原理上学习处理VMP的机会。有点困惑想请教你一下。
在源码的 Inst_UD_Chain::AddNode函数中

_esp_pos + = node->stackDef;
node->espPos = _esp_pos;

这里看代码我认为_esp_pos是记录当前UD链中ESP的位置，可是在实际调试过程中似乎并不是这样。
我截取了一段log

0040F61D   _esp_pos[-4] + node->stackDef[-4] =[-8] //加起来的和本应该等于-8
0040F61D   current _esp_pos[-4]                             //然而却等于-4
0040F61D   node.espPos: [-4]

0040F61E   _esp_pos[-4] + node->stackDef[0] =[-4]
0040F61E   current _esp_pos[-4]
0040F61E   node.espPos: [-4]

0040F625   _esp_pos[-4] + node->stackDef[0] =[-4]
0040F625   current _esp_pos[-4]
0040F625   node.espPos: [-4]

0040C4B8   _esp_pos[-8] + node->stackDef[-4] =[-12]
0040C4B8   current _esp_pos[-8]
0040C4B8   node.espPos: [-8]

发现node->stackDef并没有加上去～，不知是bug还是故意为之？如果有时间请不吝赐教

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.