-
Notifications
You must be signed in to change notification settings - Fork 588
Open
Description
Using Mona with WinDBG Preview always stuck at
[+] Creating suggestions list
[+] Processing suggestions
[+] Launching ROP generator
[+] Attempting to produce rop chain for VirtualProtect
Sun 2025/07/13 09:14:15 PM: Step 1/7: esi
** Error trying to process module kernelbase.dll
** Error trying to process module kernel32.dll
This was traced back to a problematic line that tries to get the function name
Line 2986 in e793209
thisfuncfullname = thisfunc.getName().lower() |
For some unknown reason, this takes so much time, thus I've updated my local source code to
# thisfunc = dbglib.Function(dbg,ptr)
# thisfuncfullname = thisfunc.getName().lower()
thisfuncfullname, _ = getFunctionName(ptr)
thisfuncfullname = thisfuncfullname.replace("!", ".")
which only works on WinDBG as stated in the getFunctionName
function comments.
Metadata
Metadata
Assignees
Labels
No labels