ainfosec / MoRE
TLB splitting VMM
☆164Updated 8 years ago
Alternatives and similar repositories for MoRE:
Users that are interested in MoRE are comparing it to the libraries listed below
- Automatically exported from code.google.com/p/hyperdbg☆104Updated 9 years ago
- IntelVT-X nice feature -> tool☆94Updated 10 years ago
- Detecting execution of kernel memory where is not backed by any image file☆256Updated 6 years ago
- Hypervisor based tool for monitoring system register accesses.☆143Updated 6 years ago
- Automatically exported from code.google.com/p/virtdbg☆98Updated 9 years ago
- This driver implements the Intel Processor Trace functionality in Intel Skylake architecture for Microsoft Windows☆436Updated 6 years ago
- PatchGuard Research☆295Updated 6 years ago
- a bare metal (type 1) VMM (hypervisor) with a python remote control API☆181Updated 7 years ago
- A very simple hypervisor for learning experience.☆136Updated 3 years ago
- The Windows Library for Intel Process Trace (WinIPT) is a project that leverages the new Intel Processor Trace functionality exposed by W…☆377Updated last year
- Elevation of privilege detector based on HyperPlatform☆120Updated 8 years ago
- IDA Plugin which decodes Windows Device I/O control code into DeviceType, FunctionCode, AccessType and MethodType.☆108Updated last year
- A branch-monitor-based solution for process monitoring.☆132Updated 5 years ago
- Name substitution plugin for IDA Pro☆146Updated 7 years ago
- An analysis of the Warbird virtual-machine protection for the CI!g_pStore☆246Updated 7 years ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆430Updated 6 years ago
- Hypervisor-based debugger☆187Updated 4 years ago
- qb-sync is an open source tool to add some helpful glue between IDA Pro and Windbg. Its core feature is to dynamically synchronize IDA's …☆120Updated 9 years ago
- ☆177Updated 6 years ago
- nyā☆71Updated 9 years ago
- idamagnum is a plugin for integrating MagnumDB requests within IDA☆129Updated 4 years ago
- Simpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that w…☆361Updated 6 years ago
- Translates WinDbg "dt" structure dump to a C structure☆128Updated 8 years ago
- A project that aims to automatically devirtualize code that has been virtualized using x86virt☆126Updated 2 years ago
- MemoryRanger protects kernel data and code by running drivers and hosting data in isolated kernel enclaves using VT-x and EPT features. M…☆223Updated 4 years ago
- Loading unsigned code into kernel in Windows 10 (64) with help of VMware Workstation Pro/Player design flaw☆135Updated 7 years ago
- PE file manipulation library.☆63Updated 5 years ago
- kHypervisor is a lightweight bluepill-like nested VMM for Windows, it provides and emulating a basic function of Intel VT-x☆424Updated 3 years ago
- Hyper-V Research is trendy now☆159Updated last week
- A minimalistic educational hypervisor for Windows on AMD processors.☆381Updated 3 weeks ago