diff --git a/pwndbg/commands/defcon.py b/pwndbg/commands/defcon.py
index 1853bcc87..4aca17a25 100644
--- a/pwndbg/commands/defcon.py
+++ b/pwndbg/commands/defcon.py
@@ -3,13 +3,15 @@ import gdb
 
 import pwndbg.vmmap
 import pwndbg.commands
+import pwndbg.symbol
 import pwndbg.memory
 
 from pwndbg.color import bold, blue, green, red
 
 @pwndbg.commands.Command
 @pwndbg.commands.OnlyWhenRunning
-def heap(addr=0x2aaaaaaaf000):
+def heap(addr=0x2aaaaaad5000):
+# def heap(addr=0x2aaaaaaaf000):
     free = []
 
     try:
@@ -26,40 +28,43 @@ def heap(addr=0x2aaaaaaaf000):
 
 
 
-def heap_freebins(addr=0x060E360):
+def heap_freebins(addr=0x0602558):
     print(bold('Linked List'))
 
     # addr = 0x0602558
-    addr = 0x060E360
+    # addr = 0x060E360
+
     print('    ' + hex(addr))
     addr = pwndbg.memory.u64(addr)
     free = []
 
-    while True:
-        if not pwndbg.memory.peek(addr):
-            break
-
+    while addr and pwndbg.memory.peek(addr):
         free.append(addr)
         size   = pwndbg.memory.u64(addr)
+
         in_use = size & 1
         size   &= ~3
 
-        linkedlist = addr + 8 + size - 0x10
+        linkedlist = (addr + 8 + size - 0x10) & pwndbg.arch.ptrmask
 
-        bk = pwndbg.memory.u64(linkedlist)
-        fd = pwndbg.memory.u64(linkedlist+8)
-        print('    %#x %#x %s' % (addr, size, '*' if in_use else ''))
+        try:
+            bk = pwndbg.memory.u64(linkedlist)
+        except:
+            bk = None
+
+        try:
+            fd = pwndbg.memory.u64(linkedlist+8)
+        except:
+            fd = None
 
+        print('    %#x %#x %s' % (addr, size, '*' if in_use else ''))
         addr = bk
     
     print()
     return free
 
 def heap_allocations(addr, free):
-    while True:
-        if not pwndbg.memory.peek(addr):
-            break
-
+    while addr and pwndbg.memory.peek(addr):
         size   = pwndbg.memory.u64(addr)
         in_use = size & 1
         flags  = size & 3
@@ -74,7 +79,10 @@ def heap_allocations(addr, free):
         if not in_use or addr in free:
             print(blue(bold("%#016x - usersize=%#x - [FREE %i]" % (addr, size, flags))))
 
-            linkedlist = addr + 8 + size - 0x10
+            linkedlist = (addr + 8 + size - 0x10) & pwndbg.arch.ptrmask
+
+            if not pwndbg.memory.peek(linkedlist):
+                print('Corrupted? (%#x)' % linkedlist)
 
             bk = pwndbg.memory.u64(linkedlist)
             fd = pwndbg.memory.u64(linkedlist+8)
@@ -89,3 +97,25 @@ def heap_allocations(addr, free):
         addr += size + 8
         print()
 
+
+
+@pwndbg.commands.Command
+@pwndbg.commands.OnlyWhenRunning
+def ll(addr=0x637128):
+    """
+    .bss:0000000000637128 ; core_entry *core_list
+    .bss:0000000000637128 core_list       dq ?                    ; DATA XREF: start_main_randomize+19Eo
+    """
+    fd = pwndbg.memory.u64(addr)
+    print('%16s%#16s %#16s %#16s %#16s' % ('', 'o','v','bk','fd'))
+
+    while fd:
+        o = pwndbg.memory.u64(fd)
+        v = pwndbg.memory.u64(o)
+
+        v = pwndbg.symbol.get(v-0x10) or hex(v)
+
+        at = fd
+        bk = pwndbg.memory.u64(fd+8)
+        fd  = pwndbg.memory.u64(fd+16)
+        print('@ %#-15x%#16x %16s %#16x %#16x' % (at, o,v,bk,fd))