cbwang505 / DIYDynamoRIO
动态二进制插桩框架DynamoRIO通过将程序代码进行反复插桩(Instrumentation)执行构建了源程序代码与操纵代码之间的桥梁,使DynamoRIO的客户端编写者能够在更高的层面上驾驭原有的程序代码.虽然程序的载体还是被编译成原生的汇编指令集执行,但是不管是原生代码还是程序行为逻辑DynamoRIO为我们提供丰富的API已经把这些封装成了足够友好操作方式暴露给客户端编写者使用,用户可以透明的修改原有的程序代码(HotPatch),执行追踪,Hook,调试,模拟等高级运行时操纵(Runtime Code Manipulation )技术.本文主要分析DynamoRIO插桩的主要流程和实现原理,深入源码片段中几个有意思的小节体现作者构思的巧妙之处,并附加相关demo分析让读者加深…
☆33Updated 2 years ago
Alternatives and similar repositories for DIYDynamoRIO:
Users that are interested in DIYDynamoRIO are comparing it to the libraries listed below
- Library for Capstone instruction to LLVM IR translation☆45Updated 7 years ago
- Decode machine code into VEX IR and translate into LLVM IR☆26Updated 5 years ago
- An IDA processor for eBPF bytecode☆62Updated 4 months ago
- 搜集的一些kernel paper☆25Updated 5 years ago
- a plugin for ida of version 7.2 to help know F5 window codes better☆54Updated 5 years ago
- Raw IDA Kernel API for IDAPython☆33Updated 2 years ago
- Toy LLVM obfuscator pass☆72Updated 3 years ago
- Static Binary Instrumentation☆120Updated 3 years ago
- Format the tcg log for qemu and present it in a more intuitive form☆13Updated last year
- 关于intel和amd指令行为不一样这件事☆61Updated 2 years ago
- angr源码分析☆33Updated 5 years ago
- 一个将 vmnote 指令集重编译成 x64 指令集的脚本,并且可以用 IDA 进行分析。☆14Updated 3 years ago
- Debug IDAPython in VSCode☆25Updated 2 years ago
- Companion to the "Introduction to VirtualBox security research" Blog Post☆29Updated 2 years ago
- This is an IDA plugin to recover class information from C++ binary.☆17Updated 4 years ago
- ☆39Updated 4 years ago
- Open source of the paper "击败SOTA反混淆方法"☆18Updated 2 years ago
- Qemu Fuzzer.针对Qemu模拟设备的模糊测试工具,主要思路是Host生成种子Data,然后传递给Guest中转程序,由中转程序访问MMIO,以达到和模拟设备的交互,不同于qtest自带的fuzzer.☆44Updated 3 years ago
- ALIEN: idA Local varIables/inLine functIons rEcogNizer☆17Updated 3 years ago
- Intel PT log analyzer With Parallel Processing And Basic Block Offset Caching Support☆70Updated last year
- 基于angr的污点分析引擎☆39Updated 5 years ago
- ☆29Updated 3 years ago
- Target components for kAFL/Nyx Fuzzer☆33Updated last year
- Dark+ Theme☆48Updated 10 months ago
- Backward Taint Analysis (GUI) on Desktop : Analyzing trace log to determine exploitability by tracking data propagation☆48Updated 8 years ago
- A useful IDA Notepad plug-in that can completely replace IDA’s native Notepad window.☆25Updated 3 months ago
- linux system call hook framework☆47Updated 6 years ago
- vmp2.x devirtualization☆70Updated 4 months ago
- ☆13Updated 3 years ago
- a IDA plugin helps you to manage your IDA Comments☆14Updated 5 months ago