MaxXSoft / sigma-vm
Sigma Virtual Machine.
☆21Updated 8 months ago
Related projects: ⓘ
- A Unit-Based Symbolic Execution Method for Detecting Memory Corruption Vulnerabilities in Executable Codes☆43Updated last year
- Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode☆18Updated last year
- A VMBR (Virtual-Machine Based Rootkit) which runs a guest OS and sends the attacker its data☆26Updated 4 months ago
- Intel Hardware Trace Library☆62Updated last week
- Dynamic Taint Analysis versus Obfuscated Self-Checking☆16Updated 3 years ago
- PEIM (UEFI) bootkit targeting OVMF (EDK2)☆33Updated 9 months ago
- Triton based symbolic emulator☆16Updated last year
- Based on nt5src☆15Updated last year
- Symbolic execution for RISC-V machine code based on the formal LibRISCV ISA model☆32Updated 2 months ago
- Instrumenting a binary without source code to bypass anti-debug checks☆33Updated 2 years ago
- Virtual Tagger Plugin is a Cutter plugin that significantly improves handling and analysis of vtables and virtual functions☆13Updated last year
- Simple Demo of using Windows Hypervisor Platform☆26Updated 5 months ago
- ☆13Updated last year
- Rust library for lifting raw binary data to LLVM IR☆37Updated last month
- A dynamically loadable virtual-machine based rootkit designed for Linux Kernel v5.13.0 using AMD-V (SVM).☆27Updated 2 years ago
- Inlay hints for hex-rays☆18Updated this week
- Application Verifier Dynamic Fault Injection☆34Updated last week
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…☆26Updated last year
- LLVM based devirtualization PoC’s.☆20Updated 2 years ago
- Playing with LLVM passes☆34Updated last year
- dk is a WinDbg extenion for dumping memory data in meaningful and organized ways, it is an enhancement of my previous tokenext project.☆22Updated last year
- WslinkVMAnalyzer is a tool to facilitate analysis of code protected by a virtual machine featured in Wslink malware☆45Updated 2 years ago
- Reverse engineered API for Microsoft's Time Travel Debugger☆30Updated 5 months ago
- Control-Flow Graph (CFG) Visualizer for VSCode☆27Updated this week
- ☆15Updated last year
- A KISS Rust crate to parse Windows kernel crash-dumps created by Windows & its debugger.☆33Updated last month
- Python bindings for BochsCPU☆33Updated last month
- Simple Intel VT-x type-2 hypervisor for 64-bit Linux.☆15Updated 4 years ago
- ☆37Updated 3 years ago
- Lightweight WINAPI tracing with Pin☆26Updated 5 years ago