Python loadChars示例

编程语言: Python

命名空间/包名称: pykd

方法/功能: loadChars

hotexamples.com的示例: 9

Python loadChars - 已找到9个示例。这些是从开源项目中提取的最受好评的pykd.loadChars现实Python示例。您可以评价示例，以帮助我们提高示例质量。

示例#1

显示文件

文件： process_op.py 项目： AlQalamX/pyInspector

 def init(self, eprocessobj):
     try:
         if eprocessobj.ObjectTable<mmhighestuseraddress or eprocessobj.VadRoot<mmhighestuseraddress or eprocessobj.QuotaBlock<mmhighestuseraddress:
             return False
     
         self.eprocessaddr=int(eprocessobj)
         self.pid=int(eprocessobj.UniqueProcessId)
         self.parentpid=int(eprocessobj.InheritedFromUniqueProcessId)
         self.peb=int(eprocessobj.Peb)
         filepath=pykd.loadUnicodeString(eprocessobj.SeAuditProcessCreationInfo.ImageFileName.Name)
         filepath=revise_filepath(filepath)
         name=pykd.loadChars(eprocessobj.ImageFileName, 16)
         if name.startswith('\x00'):
             name=''
         name=name.strip('\x00')
         self.filepath, self.name=guess_filepath(filepath, name)
         return True
         
     except Exception, err:
         print traceback.format_exc()
         return False

示例#2

显示文件

文件： process_op.py 项目： x9090/pyInspector

    def init(self, eprocessobj):
        try:
            if eprocessobj.ObjectTable < mmhighestuseraddress or eprocessobj.VadRoot < mmhighestuseraddress or eprocessobj.QuotaBlock < mmhighestuseraddress:
                return False

            self.eprocessaddr = int(eprocessobj)
            self.pid = int(eprocessobj.UniqueProcessId)
            self.parentpid = int(eprocessobj.InheritedFromUniqueProcessId)
            self.peb = int(eprocessobj.Peb)
            filepath = pykd.loadUnicodeString(
                eprocessobj.SeAuditProcessCreationInfo.ImageFileName.Name)
            filepath = revise_filepath(filepath)
            name = pykd.loadChars(eprocessobj.ImageFileName, 16)
            if name.startswith('\x00'):
                name = ''
            name = name.strip('\x00')
            self.filepath, self.name = guess_filepath(filepath, name)
            return True

        except Exception, err:
            print traceback.format_exc()
            return False

示例#3

显示文件

文件： memtest.py 项目： QuincyWork/Python-extension-for-WinDbg

 def testLoadChars(self):
     s = pykd.loadChars(target.module.helloStr, 5)
     self.assertEqual("Hello", s)

示例#4

显示文件

文件： windbg.py 项目： Alpha-10000/Volatility

 def is_valid_address(self, addr):
     try:
         pykd.loadChars(addr,1,phyAddr=True)
         return True
     except pykd.MemoryException:
          return False

示例#5

显示文件

文件： windbg.py 项目： Alpha-10000/Volatility

 def zread(self, offset, length):
     try:
         return pykd.loadChars(offset,length,phyAddr=True)
     except pykd.MemoryException:
         return '\x00'*length

示例#6

显示文件

文件： kd.py 项目： 0xDEC0DE8/openreil

    def read(self, addr, size): 

        return pykd.loadChars(addr, size)

示例#7

显示文件

 def is_valid_address(self, addr):
     try:
         pykd.loadChars(addr, 1, phyAddr=True)
         return True
     except pykd.MemoryException:
         return False

示例#8

显示文件

 def zread(self, offset, length):
     try:
         return pykd.loadChars(offset, length, phyAddr=True)
     except pykd.MemoryException:
         return '\x00' * length

示例#9

显示文件

文件： kd.py 项目： xi4oyu/openreil

    def read(self, addr, size):

        return pykd.loadChars(addr, size)