- This topic has 2 replies, 1 voice, and was last updated 10 years, 5 months ago by
.
-
Posts
-
I know your system VirtualKD in http://virtualkd.sysprogs.org/ site offers the ability to debug the kernel . I am looking to build a similar debugger system has function which monitors the activities of excute program to get information about :
1/Get full current assembly command in registers EIP
2/Get variables register / memory location of the variable in the command Assembly before.
Ex: a excute program A is running in my debugger system.
EIP register is poiting to instruction : ADD ax, bx, 5
I want to get above instruction ADD ax, bx, 5
and the value of varible ax, bx after instruction ADD ax, bx, 5 is what?I know virtualKD support OpenSource system .
I have tried to rebuild the Visual Studio system but no success!
Can you please guide me how to re- build of the opensource virtualKD or not ? And can guide me to monitor the activities of an application executable file or not ?
i am looking forward to hearing from you as soon as posiblei want to build a debugger to monitor virus code
i am a virus researcher!
please help me to build the debugger from opensource of virtualKD
Sincerely
Nhuong Nguyen Van
- You must be logged in to reply to this topic.