Skip to content

Commit

Permalink
code error fixes
Browse files Browse the repository at this point in the history
  • Loading branch information
@trolldbois
trolldbois committed Jul 3, 2017
1 parent c178b5a commit 387a4ae
Show file tree
Hide file tree
Showing 3 changed files with 3 additions and 4 deletions.
1 change: 0 additions & 1 deletion haystack/allocators/libc/libdl.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -127,7 +127,6 @@ def getname(fnaddr):
for name, lib in ldso.items():
ret = libdl.dlclose(lib._handle)

import pickle
pickle.dump(vtable, file(fsave, 'wb'))

raise StopIteration
2 changes: 1 addition & 1 deletion haystack/mappings/cuckoo.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -56,7 +56,7 @@ def __init__(self, procdump_filename):
basename = os.path.basename(procdump_filename)
# pid-1.dmp
pid = basename.split('-')[0]
log.debug("CuckooProcessMapper %s %p", basename, pid)
log.debug("CuckooProcessMapper %s %d", basename, pid)
self.pid = pid
log.debug("pid: %s", self.pid)
self.filename = procdump_filename
Expand Down
4 changes: 2 additions & 2 deletions haystack/mappings/rek.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -72,7 +72,7 @@ def reset(self):
class RekallProcessMapper(interfaces.IMemoryLoader):

def __init__(self, imgname, pid):
log.debug("RekallProcessMapper %s %p",imgname, pid)
log.debug("RekallProcessMapper %s %d",imgname, pid)
self.pid = pid
self.imgname = imgname
self._memory_handler = None
Expand Down Expand Up @@ -173,7 +173,7 @@ def rekall_dump_to_haystack(filename, pid, output_folder_name):
# rek.py -f vol/zeus.vmem vaddump -p 856 --dump-dir vol/zeus.vmem.856.dump/ > vol/zeus.vmem.856.dump/mappings.vol
# rek2map.py vol/zeus.vmem.856.dump/mappings.vol > vol/zeus.vmem.856.dump/mappings
# vaddummp
log.debug("rekall_dump_to_haystack %s %p", filename, pid)
log.debug("rekall_dump_to_haystack %s %d", filename, pid)
if not os.access(output_folder_name, os.F_OK):
os.mkdir(output_folder_name)
from rekall import session
Expand Down

0 comments on commit 387a4ae

Please sign in to comment.