Skip to content

Home

Jump to bottom
Nguyen Anh Quynh edited this page Aug 11, 2016 · 2 revisions

This is wiki for Keypatch project.

TODO

Feel free to pick up some ideas from this page, implement them and send us pull requests.

  • Append info about instruction patching <--- DONE

    At the moment we log the info on instructions being patched in the IDA Output window. Will be nice if at the same time we append a comment on the same instruction. For example, if original instruction (before being patched) is MOV EAX, EBX, then the comment can be in the form ; Keypatch modified this from 'MOV EAX, EBX'.

    This can be enabled via a new checked button in the Patcher form.

  • Pad until next instruction boundary <---- DONE

    At the moment we have an option to pad the orphan bytes with NOP opcodes if the new instruction is shorter than the original instruction. But this does not work if the new instruction is longer.

    We can change the semantic of this option to be "Pad until next instruction boundary", so if the new instruction is longer, we pad the next instructions with NOPs, until the next boundary. (so we can pad few more instructions after that). The target is to keep the code flow intact after padding.

Clone this wiki locally