Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Mona Rop Generation with WinDBG Preview #79

@BitTheByte

Description

@BitTheByte

Using Mona with WinDBG Preview always stuck at

[+] Creating suggestions list
[+] Processing suggestions
[+] Launching ROP generator
[+] Attempting to produce rop chain for VirtualProtect
    Sun 2025/07/13 09:14:15 PM: Step 1/7: esi
** Error trying to process module kernelbase.dll
** Error trying to process module kernel32.dll

This was traced back to a problematic line that tries to get the function name

mona/mona.py

Line 2986 in e793209

thisfuncfullname = thisfunc.getName().lower()

For some unknown reason, this takes so much time, thus I've updated my local source code to

# thisfunc = dbglib.Function(dbg,ptr)
# thisfuncfullname = thisfunc.getName().lower()
thisfuncfullname, _ = getFunctionName(ptr)
thisfuncfullname = thisfuncfullname.replace("!", ".")

which only works on WinDBG as stated in the getFunctionName function comments.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions