Merge branch 'development' into graph_ogfd_new

Conflicts:
	.gitmodules
	src/bridge/bridgemain.cpp
	src/bridge/bridgemain.h
	src/dbg/controlflowanalysis.h
	src/dbg/debugger.cpp
	src/gui/Src/BasicView/Disassembly.cpp
	src/gui/Src/BasicView/SearchListView.cpp
	src/gui/Src/Bridge/Bridge.cpp
	src/gui/Src/Bridge/Bridge.h
	src/gui/Src/Gui/CPUDisassembly.cpp
	src/gui/Src/Gui/MainWindow.cpp
	src/gui/resource.qrc
	src/gui/x64dbg.pro

Author: mrexodia

.gitignore

@@ -44,6 +44,7 @@ ui_*
 help/x64*dbg.chm
 help/output/
 bin/x64*dbg.chm
+bin/win32.*
 
 # Debugger files to ignore
 CppCheckResults.xml
@@ -55,10 +56,13 @@ src/gui/build
 src/gui/Makefile*
 tools/
 RCa*
+RDa*
+RDb*
 src/build-*/
 
 # Exceptions
 !/hooks/AStyleWhore.exe
 !/hooks/AStyle.dll
 !/bin/x64dbg_shell_remove.reg
 !*.lib
+pin.log

.gitmodules

@@ -1,3 +1,6 @@
+[submodule "src/capstone_wrapper"]
+	path = src/capstone_wrapper
+	url = https://github.com/x64dbg/capstone_wrapper.git
 [submodule "src/ogdf"]
 	path = src/ogdf
 	url = https://github.com/x64dbg/ogdf.git

README.md

@@ -1,20 +1,29 @@
 # x64dbg
 
+[![BountySource](https://www.bountysource.com/badge/team?team_id=18188&style=raised)](https://www.bountysource.com/teams/x64dbg?utm_source=x64dbg&utm_medium=shield&utm_campaign=raised) [![Telegram](http://i.imgur.com/merFyCf.png)](https://telegram.me/joinchat/BzwLaQcORqjkM1k9YbTNmg) [![Join the chat at Gitter](https://badges.gitter.im/x64dbg/x64dbg.svg)](https://gitter.im/x64dbg/x64dbg?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge&utm_content=badge) [![Jenkins](http://jenkins.x64dbg.com/job/vs13/badge/icon)](http://jenkins.x64dbg.com) [![Stories in Ready](https://badge.waffle.io/x64dbg/x64dbg.png?label=ready&title=Ready)](http://waffle.io/x64dbg/x64dbg)
+
+
+
 ## Note
+
 Please run `install.bat` before you start committing code, this ensures your code is auto-formatted to the *x64dbg* [standards](https://github.com/x64dbg/x64dbg/wiki/Coding-Guidelines).
 
 ## Compiling
+
 For a complete guide on compiling *x64dbg* read [this](https://github.com/x64dbg/x64dbg/wiki/Compiling the whole project).
 
 ## Downloads
-Releases of *x64dbg* can be found [here](http://download.x64dbg.com).
-Snapshots of *x64dbg* can be found [here](http://snapshots.x64dbg.com).
+
+Releases of *x64dbg* can be found [here](http://releases.x64dbg.com).
+
 Jenkins build server can be found [here](http://jenkins.x64dbg.com).
 
 ## Overview
+
 *x64dbg* is an open-source x32/x64 debugger for Windows.
 
 ## Features
+
 - Open-source
 - Intuitive and familiar, yet new user interface
 - C-like expression parser
@@ -43,10 +52,12 @@ Jenkins build server can be found [here](http://jenkins.x64dbg.com).
 - Analysis
 
 ## License
+
 *x64dbg* is licensed under GPLv3, which means you can freely distribute and/or modify the source of *x64dbg*, as long as you share your changes with us. The only exception is that plugins you write do not have to comply with the GPLv3 license. They do not have to be open-source and they can be commercial and/or private. The only exception to this is when your plugin uses code copied from *x64dbg*. In that case you would still have to share the changes to *x64dbg* with us.
 
 ## Credits
-- Debugger core by [TitanEngine Community Edition](https://bitbucket.org/mrexodia/titanengine-update)
+
+- Debugger core by [TitanEngine Community Edition](https://bitbucket.org/titanengineupdate/titanengine-update)
 - Disassembly powered by [Capstone](http://capstone-engine.org)
 - Assembly powered by [XEDParse](https://bitbucket.org/mrexodia/xedparse)
 - Import reconstruction powered by [Scylla](https://github.com/NtQuery/Scylla)
@@ -56,20 +67,49 @@ Jenkins build server can be found [here](http://jenkins.x64dbg.com).
 - Interface icons by [Fugue](http://p.yusukekamiyamane.com)
 - Website by [tr4ceflow](http://tr4ceflow.com)
 
-## Special Thanks (in no particular order)
+## Special Thanks
+
+- All the donators!
+- Everybody adding issues!
+- People I forgot to add to this list
 - [EXETools community](http://forum.exetools.com)
 - [Tuts4You community](http://forum.tuts4you.com)
+- [ReSharper](https://www.jetbrains.com/resharper)
+- [Coverity](http://www.coverity.com)
 - acidflash
 - cyberbob
+- cypher
 - Teddy Rogers
 - TEAM DVT
 - DMichael
 - Artic
 - ahmadmansoor
+- _pusher_
+- firelegend
 
-## Developers (in order of joining)
-- [Mr. eXoDia](http://mrexodia.cf)
+## Developers
+
+- [mrexodia](http://mrexodia.cf)
 - Sigma
 - [tr4ceflow](http://blog.tr4ceflow.com)
 - [Dreg](http://www.fr33project.org)
-- Nukem
+- [Nukem](https://github.com/Nukem9)
+- [Herz3h](https://github.com/Herz3h)
+
+## Contributers
+
+- [torusrxxx](https://github.com/torusrxxx)
+- [blaquee](https://github.com/blaquee)
+- [wk-952](https://github.com/wk-952)
+- [RaMMicHaeL](http://rammichael.com)
+- [lovrolu](https://github.com/lovrolu)
+- [fileoffset](https://github.com/fileoffset)
+- [SmilingWolf](https://github.com/SmilingWolf)
+- [ApertureSecurity](https://github.com/ApertureSecurity)
+- [mrgreywater](https://github.com/mrgreywater)
+- [Dither](https://github.com/Dither)
+- [zerosum0x0](https://github.com/zerosum0x0)
+- [RadicalRaccoon](https://github.com/RadicalRaccoon)
+- [fetzerms](https://github.com/RadicalRaccoon)
+- [muratsu](https://github.com/RadicalRaccoon)
+- [ForNeVeR](https://github.com/RadicalRaccoon)

bin/mnemdb.json

@@ -6,9 +6,9 @@
 <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
 <style>
 html,body { 
-	/* Default Font */
-	font-family: Courier New;
-	font-size: 11pt;
+    /* Default Font */
+    font-family: Courier New;
+    font-size: 11pt;
 }
 </style>
 
@@ -19,34 +19,52 @@
 operations, just type an expression in the 
 command window and the result will be displayed in the console. Apart from 
 calculations, it allows quick&nbsp;variable changes using a C-like syntax.</P>
-<P><STRONG>Operators</STRONG><BR>  You can use the 
-following operators in your expression. They are processed in the following order:</P>
-<P><U>0:negative</U>      
-      : Negative numbers can be prefixed by a 
-'-' sign.</P>
-<P><U>1:</U><U>brackets</U>: '(' and ')' Brackets are 
-resolved first, there is no need for a terminating bracket, unless you want to 
-use one.</P>
-<P><U>2:not</U>: '~' The not operator can be used before a 
-number of a variable, like in C.</P>
-<P><U>3:muliplication/devision</U>: '*' = regular 
-multiplication (signed/unsigned), '`' = get the higher part of the 
-multiplication, '/' = regular devision (signed/unsigned, devide by zero=error) 
-and '%' = get the modulo (remainder) of the devision.</P>
-<P><U>4:addition/substraction</U>: '+' and '-'</P>
-<P><U>5:shift</U>: '&lt;' = shift left (shl for unsigned, 
-sal for signed), '&gt;' = shift right (shr for unsigned, sar for signed).</P>
-<P><U>6:and</U>: '&amp;' Just the regular AND operation like 
-in C.</P>
-<P><U>7:xor</U>: '^' Just the regular XOR operation like in 
-C.</P>
-<P><U>8:or</U>: '|' Just the regular OR operation like in 
-C.</P>
-<P><STRONG>Quick-Assigning<BR></STRONG>Changing memory, a 
+<P><STRONG>Operators</STRONG><BR>  You can use the following operators in your expression. 
+They are processed in the following order (<A 
+href="http://en.cppreference.com/w/c/language/operator_precedence" 
+target=_blank>source</A>):</P>
+<P><U>1:parentheses/brackets</U>: <EM>(1+2)</EM>, [1+6] have 
+priority over other operations.</P>
+<P><U>2:unary minus/binary not/logical not</U>: <EM>-1</EM> (negative 1), <EM>~1</EM> (binary not of 1), <EM>!0</EM> 
+(logical not of 0).</P>
+<P><U> 
+3:multiplication/division</U>: 
+<EM>2*3</EM> (regular multiplication), <EM>2`3</EM> (gets high part of the 
+multiplication),&nbsp;6/3 (regular division), <EM>5%3</EM> (modulo/remainder of 
+the division).</P>
+<P><U>4:addition/subtraction</U>: 
+<EM>1+3</EM> (addition), <EM>5-2</EM> 
+ (subtraction).</P>
+<P><U>5:left/right 
+shift</U>:&nbsp;<EM>1&lt;&lt;2</EM> (shift left, shl for unsigned, sal for 
+signed), <EM>10&gt;&gt;1</EM> (shift right, shl 
+for&nbsp;unsigned, sal for signed). </P>
+<P><U>6:smaller (equal)/bigger (equal)</U>: 4&lt;10, 3&gt;6, 
+<EM>1&lt;=2</EM>, <EM>6&gt;=7</EM> (resolves to 1 if true,       
+   0        if false).</P>
+<P><U>7:equal/not equal</U>: <EM>1==1</EM>, <EM>2!=6</EM>   
+   (resolves to 1 if true, 0 if 
+false).</P>
+<P><U>8:binary and</U>: <EM>12&amp;2</EM>   
+        (regular binary 
+and).</P>
+<P><U>9:binary xor</U>: <EM>2^1</EM>   
+        (regular binary 
+xor).</P>
+<P><U>10:binary or</U>: <EM>2|8</EM>   
+        (regular binary 
+or).</P>
+<P><U>11:logical and</U>: <EM>0&amp;&amp;3</EM>   
+   (resolves to 1 if true, 0 if 
+false).</P>
+<P><U>12:logical or</U>: <EM>0||3</EM>   
+   (resolves to 1 if true, 0 if 
+false).</P>
+<P><STRONG><U>Quick-Assigning<BR></U></STRONG>Changing memory, a 
 variable, register or&nbsp;flag can be easily done using a C-like 
 syntax:</P>
-<P><U>a?=b</U>: '?' can be any mathematical operation. 'a' 
-can be any register, flag, variable or memory location. 'b' can be anything that is recognized as a mathmatical 
-input.</P>
-<P><U>a++/a--</U>: 'a' can be any register, flag, variable or memory 
+<P>a?= b: '?' can be any non-logical operator. 
+'a' can be any register, flag, variable or memory location. 'b' can be anything that is recognized as an 
+expression.</P>
+<P>a++/a--: 'a' can be any register, flag, variable or memory 
 location.</P></body>

help/Calculations.htm

@@ -20,7 +20,7 @@
    (if present), set a breakpoint at the process entry point and 
 break at the system breakpoint before giving back control to the 
 user.</P>
-<P><U>arguments</U><BR>&nbsp; arg1 : Path to the executable file to debug. If no full path is given, the GetCurrentDirectory API will be 
+<P><U>arguments</U><BR> &nbsp; arg1: Path to the executable file to debug. If no full path is given, the GetCurrentDirectory API will be 
 called to retrieve a full path. Use quotation marks to include spaces in your path. 
 
 

help/InitDebug_initdbg_init.htm

@@ -25,26 +25,25 @@
 x64).</P>
 <P class=rvps3><U> registers</U>: All 
 registers (of all sizes) can be used as variables.</P>
-<P class=rvps3><U>memory locations</U>: You can read from a memory location by using one of the 
-following expressions:<BR>[addr]&nbsp;&nbsp;&nbsp; - read a 
+<P class=rvps3><U>memory locations</U>: 
+You can read/write from/to a memory location by using one of the 
+following expressions:<BR>[addr]&nbsp;&nbsp;&nbsp;&nbsp; - read a 
 DWORD/QWORD, depending on the 
-architecture.<BR><EM>n</EM>:[addr]&nbsp;&nbsp;- read <EM>n</EM>   bytes 
-from.<BR><STRONG>REMARKS</STRONG>:<BR>- <EM>n</EM> is the amount of bytes to read, this can be anything 
-smaller than 4 on x32 and smaller than 8 on x64 when specified, otherwise         
-                 
-            
-               
-            
- there will be an error.</P>
-<P class=rvps3><U>flags</U>: Debug 
-flags (interpreted as integer) can be used as input. Flags are prefixed with a 
-'!' following the flag name. Valid flags are: !cf, !pf, !af, !zf, !sf, !tf, !if, 
-!df, !of, !rf, !vm, !ac, !vif, !vip and !id.</P>
+architecture.<BR><EM>n</EM>:[addr]&nbsp;&nbsp; - read <EM>n</EM> bytes from.<BR><EM>seg</EM>:[addr] - 
+read a DWORD/QWORD   from&nbsp;a 
+segment.<BR><STRONG>REMARKS</STRONG>:<BR>- <EM>n</EM> is the amount of bytes to read, this can be anything 
+smaller than 4 on x32 and smaller than 8 on x64 when specified, otherwise there 
+will be an error.<BR>- <EM>seg</EM>            
+    can be gs, es, cs, fs, ds, ss. Only fs and gs have an effect.</P>
+<P class=rvps3><U>flags</U>: Debug flags 
+(interpreted as integer) can be used as input. Flags are prefixed with an '_' 
+followed by the flag name. Valid flags are: _cf, _pf, _af, _zf, _sf, _tf, _if, 
+_df, _of, _rf, _vm, _ac, _vif, _vip and _id.</P>
 <P class=rvps3><U>numbers</U>: All 
 numbers are interpreted as hex by default. If you want to be sure, you can use 
 the "x" prefix or the "0x" prefix. Decimal numbers can be used by prefixing the 
 number with a "." (.123=7B).</P>
-<P class=rvps3><U>basic calculations</U>: See "Calculations" for more information.</P>
+<P class=rvps3><U> expressions</U>: See "Expressions" for more information.</P>
 <P class=rvps3><U>Module Data</U>:</P>
 <OL>
   <LI>

help/Input.htm

@@ -20,7 +20,7 @@
 other)&nbsp;command(s):</P>
 <UL>
   <LI>
-<DIV>uncondentional branch &nbsp; - 
+<DIV>unconditional branch &nbsp;&nbsp; - 
   <U>jmp/goto</U></DIV>
 <DIV></DIV>
   <LI>

help/Jxx_IFxx.htm

@@ -15,10 +15,10 @@
 </head>
 
 <body>
-<P><STRONG>cmp<BR></STRONG>This command compares two expressions. Notice that 
-when you want to check for values being bigger or smaller, the comparison 
-arg1&gt;arg2 is made. If this evaluates to true, the $_BS_FLAG is set to 1, 
-meaning the value is internally bigger. So you test if arg1 is bigger/smaller than 
+<P><STRONG>cmp<BR></STRONG> This command compares two expressions. Notice 
+that when you want to check for values being bigger or smaller, the 
+comparison arg1&gt;arg2 is made. If this evaluates to true, the $_BS_FLAG is set to 
+1, meaning the value is bigger. So you test if arg1 is bigger/smaller than 
 arg2.</P>
 <P><U>arguments<BR></U>&nbsp;arg1: First expression to compare.    
 </P>

help/cmp.htm

@@ -0,0 +1,33 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+<html>
+<head>
+<title>functionclear</title>
+<meta name="GENERATOR" content="WinCHM">
+<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+<style>
+html,body { 
+	/* Default Font */
+	font-family: Courier New;
+	font-size: 11pt;
+}
+</style>
+
+</head>
+
+<body>
+<P>
+<STRONG>
+functionclear
+<BR>
+
+</STRONG>Delete all functions in all modules.
+</P>
+<P >
+<U >
+  arguments</U>
+
+<BR>
+This command has no arguments.</P>
+<P><U>result<BR></U>  This command does not 
+set any result variables.</P></body>
+</html>

help/functionclear.htm

@@ -19,12 +19,12 @@
 <P><U>arguments</U><BR>[arg1]: Format string (see down for 
 more information). When not specified, a newline will be logged.</P>
 <P>[argN]: Data for the format string.</P>
-<P><U>format string</U><BR>A format string like "Info 1: 
-{0}, Info 2: {1}\n Info 3:{2}". In place of {n} the n-th argument after the 
-format string is inserted. You can specify how to format the inserted data by 
-prepending a format type: "{s0}" logs a string. Other types are: "d" (log as 
-signed decimal), "u" (log as unsigned decimal), "p" (log as 0x????????), "s" 
-(log the string at the address specified).<BR>You can print a "{" by escaping it 
+<P><U>format string</U><BR>      
+  A format string like "Info 1: {0}, Info 2: {1}\n Info 3:{2}". In 
+place of {n} the n-th argument after the format string is inserted. You can 
+specify how to format the inserted data by prepending a format type: "{s:0}" logs 
+a string. Other types are: "d" (log as signed decimal), "u" (log 
+as unsigned decimal), "p" (log as ????????).<BR>You can print a "{" by escaping it 
 like "{{". Same for "{". "\n" inserts a newline.</P>
 <P><U>result</U><BR>This command does not set any result 
 variables.</P></body>

help/log.htm

@@ -20,6 +20,6 @@
 <P class=rvps3><U>arguments </U><BR>&nbsp; arg1: Value to test.</P>
 <P class=rvps3>&nbsp; arg2: Tester.</P>
 <P class=rvps3><U>result<BR></U>This command&nbsp;sets the internal variables $_EZ_FLAG 
-and $_BS_FLAG. $_EZ_FLAG is set to 1 when arg1&amp;arg2= = 0. $_BS_FLAG is 
+and $_BS_FLAG. $_EZ_FLAG is set to 1 when arg1 &amp; arg2 == 0. $_BS_FLAG is 
 always set to 0.</P></body>
 </html>

help/test.htm

@@ -0,0 +1,5 @@
+@echo off
+echo Run this to update translation templates after the source is modified. Be sure to set Qt path in setenv.bat
+
+call setenv.bat x64
+"lupdate.exe" src/gui/x64dbg.pro

help/x64_dbg.wcp

@@ -70,7 +70,7 @@ mkdir %RELEASEDIR%\pluginsdk\XEDParse
 mkdir %RELEASEDIR%\pluginsdk\yara
 mkdir %RELEASEDIR%\pluginsdk\yara\yara
 
-xcopy src\dbg\capstone %RELEASEDIR%\pluginsdk\capstone /S /Y
+xcopy src\capstone_wrapper\capstone %RELEASEDIR%\pluginsdk\capstone /S /Y
 xcopy src\dbg\dbghelp %RELEASEDIR%\pluginsdk\dbghelp /S /Y
 xcopy src\dbg\DeviceNameResolver %RELEASEDIR%\pluginsdk\DeviceNameResolver /S /Y
 xcopy src\dbg\jansson %RELEASEDIR%\pluginsdk\jansson /S /Y
@@ -113,10 +113,13 @@ copy bin\x64\x64dbg.lib %RELEASEDIR%\pluginsdk\x64dbg.lib
 echo release
 
 mkdir %RELEASEDIR%\release
+mkdir %RELEASEDIR%\release\translations
 mkdir %RELEASEDIR%\release\x32
 mkdir %RELEASEDIR%\release\x64
 
 copy bin\x96dbg.exe %RELEASEDIR%\release\x96dbg.exe
+copy bin\mnemdb.json %RELEASEDIR%\release\mnemdb.json
+xcopy src\gui\Translations\*.qm %RELEASEDIR%\release\translations /S /Y
 copy bin\x32\x32bridge.dll %RELEASEDIR%\release\x32\x32bridge.dll
 copy bin\x32\x32bridge.pdb %RELEASEDIR%\release\x32\x32bridge.pdb
 copy bin\x32\x32dbg.dll %RELEASEDIR%\release\x32\x32dbg.dll

maketranslatetemplate.bat

@@ -272,6 +272,7 @@ class Utf8Ini
                 break;
             case '\t':
                 escaped += "\\t";
+                break;
             default:
                 escaped += ch;
             }