Skip to content
forked from ri-char/pwatch

A cli tool to install a hardware breakpoint/watchpoint on a process in linux.

License

Notifications You must be signed in to change notification settings

AngelLikeYou/pwatch

 
 

Repository files navigation

pwatch

A cli tool to install a hardware breakpoint/watchpoint on a process in linux. This is useful for debugging a process without having to attach a debugger to it.

Now it supports x86_64 and arm64. You can use it on rooted Android devices as well.

Usage

pwatch <pid> <type> <addr>
pwatch -t <tid> <type> <addr>

For example:

pwatch 31737 rw4 0x55fa689a90

This will install a read/write 4 byte watchpoint on the address 0x55fa689a90 of all threads in the process with pid 31737.

full arguments:

Usage: pwatch [OPTIONS] <PID> <TYPE> <ADDR>

Arguments:
  <PID>   target pid, if thread is true, this is the tid of the target thread
  <TYPE>  watchpoint type, can be read(r), write(w), readwrite(rw) or execve(x). if it is one of r, w, rw, the watchpoint length is needed. Valid length is 1, 2, 4, 8. For example, r4 means a read watchpoint with length 4 and rw1 means a readwrite watchpoint with length 1
  <ADDR>  watchpoint address, in hex format. 0x prefix is optional

Options:
      --buf-size <BUF_SIZE>  buffer size, in power of 2. For example, 2 means 2^2 pages = 4 * 4096 bytes [default: 0]
  -t                         whether the target is a thread or a process
  -b, --backtrace            whether to print backtrace
  -h, --help                 Print help

Output

output

About

A cli tool to install a hardware breakpoint/watchpoint on a process in linux.

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • Rust 100.0%