Alternatives and similar repositories for sigma-vm

Users that are interested in sigma-vm are comparing it to the libraries listed below

• Fare9 / elfparser_e
  Example of an ELF parser to learn about the ELF format
  ☆10Updated 9 months ago
• Gui774ume / etrace
  ETrace is a syscall tracing utility powered by eBPF
  ☆25Updated 2 years ago
• SoftwareSecurityLab / UbSym
  A Unit-Based Symbolic Execution Method for Detecting Memory Corruption Vulnerabilities in Executable Codes
  ☆43Updated 2 years ago
• KelvinMsft / TechMyths
  ☆17Updated 2 years ago
• gognl / VMBR
  A VMBR (Virtual-Machine Based Rootkit) which runs a guest OS and sends the attacker its data
  ☆26Updated last year
• Rantanen / ghidra-minidump-loader
  Windows Minidump loader for Ghidra
  ☆29Updated 2 years ago
• therealdreg / symseghelper
  Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode
  ☆19Updated last year
• djolertrk / kLLDB
  LLDB based debugger for Linux Kernel
  ☆25Updated 3 months ago
• elastic / die-rust
  Native Rust bindings for @horsicq's Detect-It-Easy
  ☆15Updated 5 months ago
• suibex / donna
  Debugger and analyzer for ARM ELF executables.
  ☆19Updated 2 years ago
• norlen / symex
  Symbolic Execution Engine in Rust
  ☆21Updated last year
• b-irb / PigPEI
  PEIM (UEFI) bootkit targeting OVMF (EDK2)
  ☆35Updated last year
• Nadharm / CoVirt
  A dynamically loadable virtual-machine based rootkit designed for Linux Kernel v5.13.0 using AMD-V (SVM).
  ☆29Updated 3 years ago
• agra-uni-bremen / BinSym
  Symbolic execution for RISC-V machine code based on the formal LibRISCV ISA model
  ☆47Updated last month
• codereversing / ted_api
  ☆35Updated 2 years ago
• twevs / HighPCodeViewer
  Ghidra plugin that adds a window showing the high P-code for the current function.
  ☆17Updated 2 years ago
• kanren3 / efiutil
  Based on nt5src
  ☆15Updated 2 years ago
• LLVMParty / llvm-headers
  Easily search LLVM headers for all major versions!
  ☆19Updated 5 months ago
• OALabs / ZVM
  Disassembler for Zeus VM custom instruction set
  ☆28Updated last year
• ergrelet / cpplumber
  Static analysis tool based on clang, which detects source-to-binary information leaks in C and C++ projects
  ☆85Updated 2 years ago
• ek0 / hxemu
  Triton based symbolic emulator
  ☆16Updated 2 years ago
• fengjixuchui / CodaPinTracer
  Lightweight WINAPI tracing with Pin
  ☆27Updated 5 years ago
• dwuid / chenxification
  Exemplary LLVM function pass implementing Control Flow Flattening.
  ☆17Updated 7 years ago
• Zhuagenborn / Windows-x86-Debugger
  🐞 A simple Windows x86 debugging framework written in C++20 that supports software breakpoints and hardware breakpoints. It can be used …
  ☆12Updated 3 months ago
• libiht / libiht
  Intel Hardware Trace Library - Kernel Space Componment
  ☆71Updated 2 months ago
• Colton1skees / WinTTD
  Reverse engineered API for Microsoft's Time Travel Debugger
  ☆34Updated last year
• h311d1n3r / HellTracer
  A Linux x86/x86-64 tool to trace registers and memory regions.
  ☆38Updated 3 years ago
• tum-i4 / dta-vs-osc
  Dynamic Taint Analysis versus Obfuscated Self-Checking
  ☆16Updated 3 years ago
• orca-eaa5a / mac-defender
  ☆11Updated 3 years ago
• archercreat / llvm_stuff
  LLVM based devirtualization PoC’s.
  ☆21Updated 3 years ago