PinTools | Pintool example and PoC for dynamic binary analysis | Reverse Engineering library

by JonathanSalwan C++ Version: Current License: No License

X-Ray Key Features Code Snippets Community Discussions(2)Vulnerabilities Install Support

kandi X-RAY | PinTools Summary

PinTools is a C++ library typically used in Utilities, Reverse Engineering applications. PinTools has no bugs, it has no vulnerabilities and it has low support. You can download it from GitHub.

Pintool example and PoC for dynamic binary analysis

Support

Quality

Security

License

Reuse

Support

PinTools has a low active ecosystem.

It has 492 star(s) with 151 fork(s). There are 46 watchers for this library.

It had no major release in the last 6 months.

There are 3 open issues and 0 have been closed. There are no pull requests.

It has a neutral sentiment in the developer community.

The latest version of PinTools is current.

Quality

PinTools has no bugs reported.

Security

PinTools has no vulnerabilities reported, and its dependent libraries have no vulnerabilities reported.

License

PinTools does not have a standard license declared.

Check the repository for any license declaration and review the terms closely.

Without a license, all rights are reserved, and you cannot use the library in your applications.

Reuse

PinTools releases are not available. You will need to build from source code and install.

Top functions reviewed by kandi - BETA

kandi's functional review helps you automatically verify the functionalities of the libraries and avoid rework.
Currently covering the most popular Java, JavaScript and Python libraries. See a Sample of PinTools

Get all kandi verified functions for this library.

PinTools Key Features

No Key Features are available at this moment for PinTools.

PinTools Examples and Code Snippets

No Code Snippets are available at this moment for PinTools.

Community Discussions

Trending Discussions on PinTools

How to identify the symbols in the symbol table are my 'application' functions

Cannot use IARG_MEMORYREAD_SIZE on non-standard memory access of instruction at 0x7ffbdcbe4e88: xsave ptr [rsp+0x40]

QUESTION

How to identify the symbols in the symbol table are my 'application' functions

Asked 2020-May-14 at 23:54

I have an example C program test.c that defines three functions only: main, fn1 and fn2:

...

ANSWER

Answered 2020-May-14 at 23:54

is there any way to differentiate these from the other application symbols?

No.

I can't find a way to filter my instrumentation pintool written in C++ to the routines within the .text section that I care about

It's your application. Surely you can either use consistent naming, or collect a list of symbols you care about, and use that.

Source https://stackoverflow.com/questions/61809336

QUESTION

Cannot use IARG_MEMORYREAD_SIZE on non-standard memory access of instruction at 0x7ffbdcbe4e88: xsave ptr [rsp+0x40]

Asked 2019-May-07 at 22:49

I'm trying to use Intel Pin for investigating memory activity of an executable. And I tried to use IARG_MEMORYREAD_SIZE parameter. Here is the source code.

...

ANSWER

Answered 2019-May-07 at 22:49

This might fall under the case where you need to use IARG_MULTI_MEMORYACCESS_EA (see the documentation).

Basically, according to the XSAVE documentation the number of bytes written to the memory pointed by the instruction is not constant and depends on the following factors:

The requested-feature bitmap (RFBM)
The logical-AND of EDX:EAX
The logical-OR of XCR0 with the IA32_XSS MSR

You can check if you can use IARG_MEMORYREAD_SIZE (constant memory sized instruction) or not with INS_hasKnownMemorySize.

Source https://stackoverflow.com/questions/55992337

Community Discussions, Code Snippets contain sources that include Stack Exchange Network

Vulnerabilities

No vulnerabilities reported

Install PinTools

You can download it from GitHub.

Support

For any new features, suggestions and bugs create an issue on GitHub. If you have any questions check and ask questions on community page Stack Overflow .

Find more information at: