Joseph Doherty
fe2a6db786
rust / build / test / clippy / fmt (push) Has been cancelled
Layout:
- src/ .NET 10 x64 reference: MxNativeCodec, MxNativeClient,
MxAsbClient, probes, tests, harnesses. Executable spec.
- design/ Architectural plan for the Rust port (M0–M6), error
model, protocol invariants, risks (R1–R16), adversarial
review log (review.md).
- rust/ Rust workspace. M0 skeleton + M1 codec parity.
mxaccess-codec: 215 unit tests + 2 cross-implementation
parity tests (byte-identical against .NET reference).
Other crates are M0 stubs awaiting M2+.
- captures/ Frida + netsh + pcap evidence per CLAUDE.md
("captures are evidence, not throwaway logs").
- analysis/ Decompiled C# (frida/proxy/decompiled-*),
Ghidra exports for native DLLs (`exports/` only —
working state at `projects/` and AVEVA's input
binaries at `input/` are gitignored).
- docs/ Reverse-engineering reference docs.
- tools/ Setup-LiveProbeEnv.ps1 (Infisical credential fetcher),
Compute-Crc.ps1 (.NET parity helper).
- .github/workflows/ Rust CI: fmt + build + test + clippy on Windows.
- LICENSE MIT (Joseph Doherty, 2026).
Verified:
- cargo test --workspace → 217 passed (215 unit + 2 .NET parity), 0 failed
- cargo clippy --workspace -- -D warnings → clean
- cargo fmt --all -- --check → clean
- cargo publish --dry-run -p mxaccess-codec → packages cleanly
Excluded from history (see .gitignore):
- **/bin, **/obj, **/target — build artifacts
- analysis/ghidra/projects/ — Ghidra working state (regenerable)
- analysis/ghidra/input/ — AVEVA proprietary DLLs (vendor IP)
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
3.0 KiB
3.0 KiB
NmxSvcps.dll
- Path:
C:\Program Files (x86)\ArchestrA\Framework\Bin\NmxSvcps.dll - Size: 46464 bytes
- Machine: x86
- PE timestamp: 2020-04-06T01:17:23+00:00
- ImageBase:
0x10000000
Exports
| Ordinal | RVA | Name |
|---|---|---|
| 1 | 0x00001040 | DllCanUnloadNow |
| 2 | 0x00001000 | DllGetClassObject |
| 3 | 0x000010a0 | DllRegisterServer |
| 4 | 0x000010e0 | DllUnregisterServer |
Imports
RPCRT4.dll:NdrOleAllocate,NdrOleFree,IUnknown_QueryInterface_Proxy,IUnknown_AddRef_Proxy,IUnknown_Release_Proxy,CStdStubBuffer_QueryInterface,CStdStubBuffer_AddRef,CStdStubBuffer_Connect,CStdStubBuffer_Disconnect,CStdStubBuffer_Invoke,CStdStubBuffer_IsIIDSupported,CStdStubBuffer_CountRefs,CStdStubBuffer_DebugServerQueryInterface,CStdStubBuffer_DebugServerRelease,NdrDllUnregisterProxy,NdrDllRegisterProxy,NdrCStdStubBuffer_Release,NdrDllCanUnloadNow,NdrDllGetClassObjectKERNEL32.dll:ExitProcess,HeapSize,GetStringTypeW,MultiByteToWideChar,LCMapStringW,RtlUnwind,GetModuleFileNameW,WriteFile,GetCurrentProcess,TerminateProcess,IsDebuggerPresent,SetUnhandledExceptionFilter,UnhandledExceptionFilter,LoadLibraryW,HeapReAlloc,HeapAlloc,DisableThreadLibraryCalls,IsValidCodePage,GetOEMCP,GetACP,GetCPInfo,EnterCriticalSection,GetCurrentThreadId,DecodePointer,GetCommandLineA,EncodePointer,TlsAlloc,TlsGetValue,TlsSetValue,TlsFree,InterlockedIncrement,GetModuleHandleW,SetLastError,GetLastError,InterlockedDecrement,GetProcAddress,HeapFree,Sleep,IsProcessorFeaturePresent,SetHandleCount,GetStdHandle,InitializeCriticalSectionAndSpinCount,GetFileType,GetStartupInfoW,DeleteCriticalSection,GetModuleFileNameA,FreeEnvironmentStringsW,WideCharToMultiByte,GetEnvironmentStringsW,HeapCreate,HeapDestroy,QueryPerformanceCounter,GetTickCount,GetCurrentProcessId,GetSystemTimeAsFileTime,LeaveCriticalSectionOLEAUT32.dll:BSTR_UserSize,BSTR_UserMarshal,BSTR_UserUnmarshal,BSTR_UserFree
Resources
| Type | ID/name | Lang | RVA | Size |
|---|---|---|---|---|
16 |
1 |
1033 | 0x0000c0a0 | 972 |
24 |
2 |
1033 | 0x0000c46c | 346 |
GUID hits
(none)
Interesting strings
CStdStubBuffer_AddRefCStdStubBuffer_ConnectCStdStubBuffer_CountRefsCStdStubBuffer_DebugServerQueryInterfaceCStdStubBuffer_DebugServerReleaseCStdStubBuffer_DisconnectCStdStubBuffer_InvokeCStdStubBuffer_IsIIDSupportedCStdStubBuffer_QueryInterfaceINmxNotifyINmxServiceINmxService2INmxStatusINmxSvcCallbackINmxSvcStatisticsIUnknown_AddRef_ProxyIUnknown_QueryInterface_ProxyIUnknown_Release_ProxyNdrCStdStubBuffer_ReleaseNdrDllCanUnloadNowNdrDllGetClassObjectNdrDllRegisterProxyNdrDllUnregisterProxyNdrOleAllocateNdrOleFreeNmxSvcPS.dllNmxSvc_v0032NmxSvcps ModuleNmxSvcps.dllRPCRT4.dllWriteFile- ``.orpc`