Exploit Development and Reverse Engineering with GDB Made Easy
This release brings a lot of bugfixes, update to Capstone 4.0.1, better r2 sync support and some other enhancements.
Thanks for all external contributors:
Changes:
print elements
anymore (#590)bugreport
command (#533)context code
now displays the source file path (#526)probeleak
now displays symbols if the address corresponds to one (#572)We haven't done releases for some time but hopefully this release will change that habbit.
Below you can see a detailed changelog of what has been changed.
next_syscall
renamed to nextsyscall
breakrva
- break at offset of given executable (default main binary; e.g. breakrva 0x123
will set a breakpoint at binary_base+0x123
)piebase
- rebase given address for given executableprobeleak
- scan for pointers in the specified memory (#492)stepret
- step until we step into a ret (#448)stepsyscall
- step until we step into a syscall (#447)tcache
- support for ptmalloc's thread cache (#420)vis_heap_chunks
- visualize heap chunks at the specified address (#496)eX
windbg commands family now supports hex data prefixed with 0x (e.g. eq $rsp 0xCAFEBABE
will work
the same as eq $rsp cafebabe
)context
- it is now possible to set empty context (e.g. set context-sections
)hexdump
, nearpc
, telescope
- improved repeat functionality (#395)vmmap_add
, vmmap_load
- it is possible to add memory pages manually (might be useful for bare metal debugging - see #385)version
- displays capstone, unicorn, IDA and Hexrays versionsxinfo
- display extended offset informationida-enabled
- control whether pwndbg try to connect to IDA xmlrpc server (enabled by default to preserve old behavior)nearpc-show-args
- control whether context
displays an args sectionvmmap_load
and vmmap_add
commands)$rebase(address)
function (use e.g. as break *$rebase(some_address)
; see also breakrva
and piebase
commands)theme
and https://github.com/pwndbg/pwndbg-themes)$rebase(addr)
functionfind_fake_chunk
(see #435)exception-debugger
config parameter (#501)Thanks to all who contributed to this release:
This release of Pwndbg includes a large number of bug fixes, and the following new or updated commands:
bins
fastbins
largebins
mp
smallbins
unsortedbin
configfile
and themefile
will save your settings to a file easily added to ~/.gdbinit
Add CheatEngine style searching
Fix Windbg command byte-endianness
Fix VDSO and Linker mappings under QEMU (#91)
Mark $pc
as executable upon resuming execution (#90)
Remove input-radix
and output-radix
configuration options
set output-radix 0x10
set input-radix 0x10
First tagged release.