Alternatives and similar repositories for sigma-vm

Users that are interested in sigma-vm are comparing it to the libraries listed below

• Gui774ume / etrace
  ETrace is a syscall tracing utility powered by eBPF
  ☆25Updated 2 years ago
• Fare9 / elfparser_e
  Example of an ELF parser to learn about the ELF format
  ☆10Updated last year
• kromych / disarm64
  Instruction decoder generator
  ☆33Updated 8 months ago
• BenH11235 / rust-re-tour
  A tour of what some Rust language features look like after compilation.
  ☆50Updated 2 years ago
• Rantanen / ghidra-minidump-loader
  Windows Minidump loader for Ghidra
  ☆29Updated 3 years ago
• djolertrk / kLLDB
  LLDB based debugger for Linux Kernel
  ☆28Updated 9 months ago
• libiht / libiht
  Intel Hardware Trace Library - Kernel Space Componment
  ☆79Updated 2 months ago
• woodruffw / llvm-passgen
  A small tool for quickly generating LLVM passes
  ☆29Updated 3 months ago
• OALabs / ZVM
  Disassembler for Zeus VM custom instruction set
  ☆29Updated last year
• twevs / HighPCodeViewer
  Ghidra plugin that adds a window showing the high P-code for the current function.
  ☆17Updated 2 years ago
• Colton1skees / Symex
  Symbolic executor for Binary Ninja's MLIL
  ☆26Updated last year
• weizhiao / Relink
  A high-performance, no_std compliant ELF loader and JIT linker for Rust.
  ☆111Updated last week
• KelvinMsft / TechMyths
  ☆18Updated 2 years ago
• tum-i4 / dta-vs-osc
  Dynamic Taint Analysis versus Obfuscated Self-Checking
  ☆16Updated 4 years ago
• FuturesLab / Bin2Wrong
  Bin2Wrong: a Unified Fuzzing Framework for Uncovering Semantic Errors in Binary-to-C Decompilers
  ☆59Updated 7 months ago
• aengelke / disarm
  Disarm — Fast AArch64 Decode/Encoder
  ☆44Updated last year
• insufficiently-caffeinated / caffeine
  A symbolic execution engine for LLVM IR
  ☆51Updated 3 years ago
• Vector35 / pdb-rs
  A parser for Microsoft PDB (Program Database) debugging information
  ☆22Updated last year
• heyitsanthony / vexllvm
  Decode machine code into VEX IR and translate into LLVM IR
  ☆28Updated 6 years ago
• SoftwareSecurityLab / UbSym
  A Unit-Based Symbolic Execution Method for Detecting Memory Corruption Vulnerabilities in Executable Codes
  ☆43Updated 2 years ago
• MrRoy09 / VMwhere
  LLVM based obfuscation engine
  ☆108Updated 6 months ago
• Colton1skees / WinTTD
  Reverse engineered API for Microsoft's Time Travel Debugger
  ☆36Updated last year
• b-irb / sauron
  Simple Intel VT-x type-2 hypervisor for 64-bit Linux.
  ☆20Updated 5 years ago
• samrussell / obfus
  Playing with LLVM passes
  ☆38Updated 2 years ago
• Nadharm / CoVirt
  A dynamically loadable virtual-machine based rootkit designed for Linux Kernel v5.13.0 using AMD-V (SVM).
  ☆35Updated 2 months ago
• samdspeare / othread
  an obfuscator based on LLVM which can obfuscate the program execution trajectory
  ☆105Updated 4 years ago
• gognl / VMBR
  A VMBR (Virtual-Machine Based Rootkit) which runs a guest OS and sends the attacker its data
  ☆28Updated last year
• ergrelet / cpplumber
  Static analysis tool based on clang, which detects source-to-binary information leaks in C and C++ projects
  ☆86Updated 3 years ago
• therealdreg / symseghelper
  Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode
  ☆19Updated 2 years ago
• r3bb1t / bin_lift
  Rust library for lifting raw binary data to LLVM IR
  ☆60Updated 5 months ago