Execution Trace Viewer
本帖最后由 冥界3大法王 于 2020-7-3 18:32 编辑Execution Trace Viewer is an application for viewing, editing and analyzing execution traces. It was originally made for reverse engineering obfuscated code, but it can be used to analyze any kind of execution trace.
https://github.com/teemu-l/execution-trace-viewer/raw/master/docs/img/etv.pngFeatures
[*]open, edit and save execution traces
[*]search & filter trace by disasm, reg values, memory address/value, etc
[*]add comments and bookmarks
[*]write python plugins
[*]supports x64dbg traces
git clone https://github.com/teemu-l/execution-trace-viewerpip install pyqt5 yapsy qdarkstyle capstonepython tv.pyTrace file formatsFollowing file formats are supported:
[*].tvt - Default file format. Developed from x64dbg trace format. 3 differences with x64dbg format: comments, disasm and bookmarks added.
[*].trace32 / .trace64 - x64dbg file format. Only reading supported. Loading x64dbg traces is slow because the code needs to be disassembled.
[*]json - Traces can be saved and loaded from json text files.
Traces folder contains one sample trace. It is ~11k lines of obfuscated code (by VMProtect3). All the handlers are disassembled and added to bookmarks table.important]PluginsExecution Trace Viewer can be extended by Python3 plugins. Plugins are launched from plugins menu or from right-click menu on trace table. Check the example plugins and core/api.py for more info.
https://github.com/teemu-l/mem-trace-plugin/archive/master.zip 这玩意不错吧 .栈帧信息都有了。调试文件也能查看了。 好 不错 需要 好东西好东西 一直在找 不错好东西 下载 这个支持一下 学习了,非常感谢 看起来不错 1111111111111 源码打开居然是404,这什么情况 这……这是个啥{:301_985:}
页:
[1]
2