Wenzel/test_libvmi.py

## test_libvmi.py
#!/usr/bin/env python3

import sys
import libvirt
import logging
from auto_config import get_windows_config
from libvmi import Libvmi, VMIOS, VMIConfig

if __name__ == '__main__':
    logger = logging.getLogger()
    logger.setLevel(logging.INFO)
    domain_name = sys.argv[1]
    con = libvirt.open("qemu:///system") # change this to your needs
    domain = con.lookupByName(domain_name)
    config = get_windows_config(domain)

    with Libvmi(domain_name, mode=VMIConfig.DICT, config=config) as vmi:
        vaddr = vmi.translate_ksym2v('PsActiveProcessHead')
        logging.info('PsActiveProcessHead %s', hex(vaddr))
	#!/usr/bin/env python3

	import sys
	import libvirt
	import logging
	from auto_config import get_windows_config
	from libvmi import Libvmi, VMIOS, VMIConfig

	if __name__ == '__main__':
	logger = logging.getLogger()
	logger.setLevel(logging.INFO)
	domain_name = sys.argv[1]
	con = libvirt.open("qemu:///system") # change this to your needs
	domain = con.lookupByName(domain_name)
	config = get_windows_config(domain)

	with Libvmi(domain_name, mode=VMIConfig.DICT, config=config) as vmi:
	vaddr = vmi.translate_ksym2v('PsActiveProcessHead')
	logging.info('PsActiveProcessHead %s', hex(vaddr))