Exploration of x86-64 ISA using speculative execution.
☆317Jan 8, 2026Updated last month
Alternatives and similar repositories for haruspex
Users that are interested in haruspex are comparing it to the libraries listed below
Sorting:
- Personal curation of Clang/LLVM patches.☆12Feb 27, 2021Updated 5 years ago
- Header-only VMWare Backdoor API Implementation & Effortless VMX Patcher for Custom Guest-to-Host RPCs☆106Dec 26, 2020Updated 5 years ago
- Header only wrapper around Hex-Rays API in C++20.☆168Dec 25, 2024Updated last year
- Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.☆657Jan 28, 2025Updated last year
- Virtual-machine Translation Intermediate Language☆1,462Nov 5, 2023Updated 2 years ago
- ☆370Jan 18, 2024Updated 2 years ago
- intel x86(-64) code analysis library that reconstructs control flow☆109Jan 8, 2026Updated last month
- ☆57Jun 21, 2022Updated 3 years ago
- Collection of obfuscation, tamper-proofing, and watermarking algorithms targeting LLVM IR.☆76Nov 12, 2019Updated 6 years ago
- A VMP to VTIL lifter.☆445May 20, 2021Updated 4 years ago
- IDA Pro plugin to make bitfield accesses easier to grep☆255Aug 3, 2025Updated 7 months ago
- A library for intel VT-x hypervisor functionality supporting EPT shadowing.☆51Mar 11, 2021Updated 4 years ago
- C++ Exceptions in Windows Drivers☆221Dec 21, 2020Updated 5 years ago
- Fetch PDB symbols directly from Microsoft's symbol servers☆48Oct 22, 2025Updated 4 months ago
- Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.☆905Nov 21, 2019Updated 6 years ago
- This is an instruction to run your own SMM code.☆108Mar 8, 2021Updated 4 years ago
- The report and the exploit of CVE-2021-26943, the kernel-to-SMM local privilege escalation vulnerability in ASUS UX360CA BIOS version 303…☆145Mar 29, 2021Updated 4 years ago
- Analyze patches in a process☆259Jul 28, 2021Updated 4 years ago
- A simple x86_64 AMD-v hypervisor type-2 Programmed with C++, with soon to be added syscall hooks. [W.I.P]☆104Aug 3, 2023Updated 2 years ago
- a dumb rpm/wpm example driver☆15Jun 7, 2021Updated 4 years ago
- Virtual machine with a custom instruction set in C☆16Jul 17, 2018Updated 7 years ago
- Lua in kernel-mode because why not.☆367Dec 3, 2021Updated 4 years ago
- Code Injection, Inject malicious payload via pagetables pml4.☆243Jul 7, 2021Updated 4 years ago
- Dynamic Taint Analysis versus Obfuscated Self-Checking☆16Sep 5, 2021Updated 4 years ago
- hvpp is a lightweight Intel x64/VT-x hypervisor written in C++ focused primarily on virtualization of already running operating system☆1,287Mar 15, 2021Updated 4 years ago
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆73Aug 11, 2023Updated 2 years ago
- Lifting from native architecture to VTIL. (WIP)☆77Feb 2, 2022Updated 4 years ago
- Lisp in kernel-mode because it was so seductive☆13Jul 17, 2020Updated 5 years ago
- A library for dynamic binary rewriting☆59Feb 10, 2021Updated 5 years ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆121Feb 8, 2022Updated 4 years ago
- function executor based on unicorn and memflow☆93Jul 24, 2025Updated 7 months ago
- Disks for DMA☆144Apr 28, 2021Updated 4 years ago
- ☆118Sep 1, 2023Updated 2 years ago
- Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.☆1,391Jun 11, 2022Updated 3 years ago
- Lightweight type-1 hypervisor offering a foundation for building advanced security-focused functionality.☆282Feb 16, 2026Updated 2 weeks ago
- LLVM based devirtualization PoC’s.☆21Dec 11, 2021Updated 4 years ago
- Universal x86/x64 VMProtect 2.0-3.X Import fixer☆20Dec 29, 2021Updated 4 years ago
- Intel / AMD CPU Internals☆1,178Mar 7, 2021Updated 4 years ago
- Easy Anti PatchGuard☆223Apr 9, 2021Updated 4 years ago