Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Other Windows version #2

Open
aceqe opened this issue Jan 21, 2022 · 1 comment
Open

Other Windows version #2

aceqe opened this issue Jan 21, 2022 · 1 comment

Comments

@aceqe
Copy link

aceqe commented Jan 21, 2022

Hi,

I tested it on windows 20H1 and got the following error:

[System:Progress] Parsing target binaries to construct CFGs...
[System:Progress] Initializing PDB symbol information...
Unhandled exception. System.Exception: Invalid range: 18011b190
   at Microsoft.FSharp.Core.PrintfModule.PrintFormatToStringThenFail@1433.Invoke(String message) in F:\workspace\_work\1\s\src\fsharp\FSharp.Core\printf.fs:line 1433
   at DLLAnalysis.NUIntModule.ofUInt64(UInt64 ui64) in /mnt/e/fuzz/NTFuzz/DLLAnalysis/src/Core/IntTypes.fs:line 37
   at DLLAnalysis.AddrModule.makeWithUI64(String bin, UInt64 ui64) in /mnt/e/fuzz/NTFuzz/DLLAnalysis/src/Core/BinTypes.fs:line 121
   at DLLAnalysis.PESymbol.updateSymbolMap(String binName, Symbol sym) in /mnt/e/fuzz/NTFuzz/DLLAnalysis/src/Core/PESymbol.fs:line 33
   at DLLAnalysis.PESymbol.initAux@51.Invoke(Symbol sym) in /mnt/e/fuzz/NTFuzz/DLLAnalysis/src/Core/PESymbol.fs:line 51
   at DLLAnalysis.PESymbol.initAux(String binName, BinHandler binHandle) in /mnt/e/fuzz/NTFuzz/DLLAnalysis/src/Core/PESymbol.fs:line 51
   at DLLAnalysis.PESymbol.init@55.Invoke(Tuple`2 tupledArg) in /mnt/e/fuzz/NTFuzz/DLLAnalysis/src/Core/PESymbol.fs:line 55
   at DLLAnalysis.PESymbol.init(FSharpList`1 binaries) in /mnt/e/fuzz/NTFuzz/DLLAnalysis/src/Core/PESymbol.fs:line 55
   at DLLAnalysis.FrontEnd.Parser.run(FSharpList`1 binFiles) in /mnt/e/fuzz/NTFuzz/DLLAnalysis/src/FrontEnd/Parse.fs:line 43
   at DLLAnalysis.CodeGenerate.run(String[] argv) in /mnt/e/fuzz/NTFuzz/DLLAnalysis/src/CodeGenerate/CodeGenerate.fs:line 43
   at Main.runMode(String mode, String[] args) in /mnt/e/fuzz/NTFuzz/DLLAnalysis/src/Main/Main.fs:line 14
   at Main.main(String[] argv) in /mnt/e/fuzz/NTFuzz/DLLAnalysis/src/Main/Main.fs:line 21

Project DLLanalysis can run ok on newer windows versions?

@jchoi2022
Copy link
Collaborator

Hi, the problem here is that NTFUZZ currently targets x86 (32bit) Windows. This is to ease the implementation of system call hooking, as described in the paper. I will update the repo to mention this point in the README, too.

Please let me know if you still encounter a problem while trying DLLAnalysis on x86 version of Windows 20H1. (I didn't have time to try NTFUZZ on the latest Windows, unfortunately.)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants