Hypervisor-Level Debugger based on Radare2 / LibVMI, using VMI IO and debug plugins
☆135Jan 6, 2019Updated 7 years ago
Alternatives and similar repositories for r2vmi
Users that are interested in r2vmi are comparing it to the libraries listed below
Sorting:
- Windows Hypervisor Platform client☆31Jun 13, 2018Updated 7 years ago
- LibVMI-based debug server, implemented in Python. Building a guest aware, stealth and agentless full-system debugger☆221Nov 17, 2020Updated 5 years ago
- Security Evaluation of Dynamic Binary Instrumentation Engines☆82Sep 1, 2018Updated 7 years ago
- A hypervisor for fuzzing built with WHVP and Bochs☆380Feb 5, 2019Updated 7 years ago
- source code of paper "Mapping to Bits: Efficiently Detecting Type Confusion Errors"☆14Dec 23, 2018Updated 7 years ago
- PoC LibVMI-based GDB server for virtual machines☆54Dec 13, 2017Updated 8 years ago
- deprecated☆46Mar 20, 2019Updated 6 years ago
- IDA 7.0 meets watch view!☆43Sep 6, 2021Updated 4 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆76Jun 8, 2019Updated 6 years ago
- HAXM hypervisor client☆18Nov 30, 2018Updated 7 years ago
- hook msr by amd svm☆125Dec 30, 2019Updated 6 years ago
- Hypervisor-based debugger☆191Dec 2, 2020Updated 5 years ago
- Virtual Machine Introspection, Tracing & Debugging☆596Feb 22, 2022Updated 4 years ago
- Local Kernel Debugger (LKD) is a python wrapper around dbgengine.dll☆92Aug 22, 2016Updated 9 years ago
- Simpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that w…☆397Dec 10, 2018Updated 7 years ago
- ☆12Feb 19, 2017Updated 9 years ago
- This is a simple driver with x64 inline assembly☆55Jun 26, 2020Updated 5 years ago
- FLARE Kernel Shellcode Loader☆178May 3, 2019Updated 6 years ago
- Program synthesis based deobfuscation framework for the USENIX 2017 paper "Syntia: Synthesizing the Semantics of Obfuscated Code"☆316Jun 11, 2020Updated 5 years ago
- KVM-based Virtual Machine Introspection☆362Oct 11, 2025Updated 4 months ago
- This driver implements the Intel Processor Trace functionality in Intel Skylake architecture for Microsoft Windows☆466Apr 17, 2018Updated 7 years ago
- Post module for Metasploit to execute ELF in memory☆86Nov 23, 2018Updated 7 years ago
- enable libemu run pe file and add some good modify☆14Feb 4, 2019Updated 7 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22May 31, 2017Updated 8 years ago
- BE-PUM (Binary Emulation for PUshdown Model) is a project for analyzing and detecting binary files. Its main focus is on generating CFG (…☆20Dec 25, 2017Updated 8 years ago
- AllMemPro☆46Jan 15, 2018Updated 8 years ago
- libemu shim layer and win32 environment for Unicorn Engine☆73Apr 14, 2017Updated 8 years ago
- Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU☆1,682Feb 14, 2024Updated 2 years ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆437Aug 22, 2018Updated 7 years ago
- ☆14Aug 15, 2018Updated 7 years ago
- ☆29Jan 15, 2021Updated 5 years ago
- A project that aims to automatically devirtualize code that has been virtualized using x86virt☆127Dec 3, 2022Updated 3 years ago
- An IDA Python script to extract information from string constants.☆324Oct 21, 2023Updated 2 years ago
- ☆179Nov 25, 2018Updated 7 years ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆124Sep 9, 2020Updated 5 years ago
- ReactOS x86-32 syscall fuzzer☆58Jul 5, 2025Updated 8 months ago
- A software driver that lets you log kernel-mode debug output into a file on Windows.☆108Jul 24, 2018Updated 7 years ago
- MemoryRanger protects kernel data and code by running drivers and hosting data in isolated kernel enclaves using VT-x and EPT features. M…☆232Jul 26, 2020Updated 5 years ago
- x86 Dynamic Binary Translator Library☆34Dec 19, 2020Updated 5 years ago