due to the sad fact that IDA Pro moving to cloud (just think about confidentiality) I decided to look at some alternatives - Binary Ninja. First impression was terrible
- totally unknown API, guys - why not make some compatibility layer with IDAPython?
- counterintuitive types in LLIL - for example constant ptr has type RegisterValue. whut?
- I found bug in LLIL types conversion to python types (and suspect it is not alone)
anyway after couple of weeks I was able to write some simple plugin for checking functions who left some linux kernel resource locked. Perhaps it can be remastered for windows kernel too
