All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to will adhere to Semantic Versioning once it reaches 0.3.0.
- These functions now return Option:
- WindowsProcess::peb()
- WindowsProcess::handle_table()
- WindowsHandleTable::iter() now returns HandleTableEntryIterator
- VmiOs refactored from the ground up
- Each OS component is now a separate struct
- Common OS components are now traits (VmiOsProcess, VmiOsThread, ...)
- VmiHandler::finished() is renamed to VmiHandler::check_completion(), which now returns an Option<Output> instead of a bool
- New drivers for offline analysis
- VmiDriverKdmp, VmiDriverXenCoreDump
- Implemented handling of PFN changes in the PageTableMonitor
- Added Output type to the VmiHandler
- vmi_core::os::OsModule + VmiOs::modules() to get the list of loaded modules
- Return PageIn event when connecting an intermediate PTE