Alternatives and similar repositories for r2vmi

Users that are interested in r2vmi are comparing it to the libraries listed below

• gamozolabs / falkervisor_beta
  ☆74Updated 5 years ago
• Wenzel / pyvmidbg
  LibVMI-based debug server, implemented in Python. Building a guest aware, stealth and agentless full-system debugger
  ☆221Updated 4 years ago
• honorarybot / PulseDbg
  Hypervisor-based debugger
  ☆189Updated 4 years ago
• QuoSecGmbH / grap
  grap: define and match graph patterns within binaries
  ☆154Updated 3 years ago
• RUB-SysSec / Marx
  Uncovering Class Hierarchies in C++ Programs
  ☆127Updated 2 years ago
• AirbusCyber / grap
  grap: define and match graph patterns within binaries
  ☆171Updated 4 years ago
• guedou / r2m2
  radare2 + miasm2 = ♥
  ☆103Updated 5 years ago
• gamozolabs / falkervisor_grilled_cheese
  ☆172Updated 3 years ago
• JeremyWildsmith / x86devirt
  A project that aims to automatically devirtualize code that has been virtualized using x86virt
  ☆126Updated 2 years ago
• quarkslab / qb-sync
  qb-sync is an open source tool to add some helpful glue between IDA Pro and Windbg. Its core feature is to dynamically synchronize IDA's …
  ☆122Updated 10 years ago
• Cisco-Talos / FIRST
  ☆99Updated last year
• marcusbotacin / BranchMonitoringProject
  A branch-monitor-based solution for process monitoring.
  ☆133Updated 5 years ago
• Frky / scat
  Dynamic analysis of binary programs to retrieve function-related information (arity, type of parameters, coupling).
  ☆67Updated 7 years ago
• danigargu / IDAtropy
  IDAtropy is a plugin for Hex-Ray's IDA Pro designed to generate charts of entropy and histograms using the power of idapython and matplot…
  ☆142Updated 4 years ago
• ufrisk / kaslrfinder
  Kernel Address Space Layout Randomization (KASLR) Recovery Software
  ☆98Updated 8 years ago
• Zentific / vmidbg
  PoC LibVMI-based GDB server for virtual machines
  ☆53Updated 7 years ago
• icchy / tracecorn
  Windows API tracer for malware (oldname: unitracer)
  ☆119Updated 7 years ago
• airbus-seclab / ramooflax
  a bare metal (type 1) VMM (hypervisor) with a python remote control API
  ☆183Updated 7 years ago
• Qubasa / 0pack
  A novel technique to hide code from debuggers & disassemblers
  ☆156Updated last year
• kkamagui / shadow-box-for-x86
  Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)
  ☆187Updated 6 years ago
• lifting-bits / fennec
  Rewriting functions in compiled binaries using McSema
  ☆89Updated 6 years ago
• quarkslab / sspam
  Symbolic Simplification with PAttern Matching
  ☆106Updated 8 years ago
• IOActive / I-know-where-your-page-lives
  I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016
  ☆164Updated 8 years ago
• thomasdullien / heap_history_viewer
  A program to draw rectangles from heap traces.
  ☆135Updated 5 years ago
• carter-yagemann / vmi-unpack
  VMI-Unpack - A Virtual Machine Introspection (VMI) based generic unpacker.
  ☆56Updated 5 years ago
• s3team / VMHunt
  ☆181Updated 6 years ago
• bitdefender / libbdvmi
  ☆62Updated 2 years ago
• bruce30262 / TWindbg
  PEDA-like debugger UI for WinDbg
  ☆205Updated last year
• immunityinc / libptrace
  An event driven multi-core process debugging, tracing, and manipulation framework.
  ☆175Updated 5 years ago
• sogeti-esec-lab / LKD
  Local Kernel Debugger (LKD) is a python wrapper around dbgengine.dll
  ☆92Updated 9 years ago