cbwang505 / unicorn-whpx
跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式提供了另一种CPU指令的模拟方式,在保持原有unicorn导出接口不变的情况下,采用Hyper-v支持带硬件虚拟化支持的Windows Hypervisor Platform API接口扩展了底层CPU模拟环境实现,支持X86指令集二进制程序模拟平台和调试器.
☆62Updated 10 months ago
Related projects ⓘ
Alternatives and complementary repositories for unicorn-whpx
- Ida pro plugin. The antiVM aims to quickly identify anti-virtual machine and anti-sandbox behavior. This can speed up malware analysis.☆37Updated 2 years ago
- 一个用来做windows内核hook的框架☆81Updated 6 months ago
- 非编译时代码混淆,包括代码块拆分、代码乱序、常量加密、代码变异、抹除jcc、局部混淆等,主要提供框架以及思路☆29Updated last year
- ☆26Updated 10 months ago
- IDA Pro plugin AntiXorstr☆102Updated last year
- A static devirtualizer for VMProtect x64 3.x. powered by VTIL.☆21Updated 2 years ago
- Another LLVM-obfuscator based on LLVM-17. A fork of Arkari☆63Updated 8 months ago
- ☆77Updated 3 years ago
- Forked LLVM focused on MSVC Compatibility. This version is designed for windows users☆75Updated 3 weeks ago
- ☆30Updated 3 years ago
- ☆92Updated 2 years ago
- VMProtectTest☆36Updated last year
- a monitoring windows driver calls kernel api tools☆92Updated 4 months ago
- ollvm de-obfuscator☆57Updated 3 years ago
- A POC to detect the exist of VMProtect 3 protection by search feature watermark.☆76Updated 10 months ago
- vmp2.x devirtualization☆61Updated this week
- 鹅城的百姓不需要有青天大老爷,于是黄四郎就出手干掉了很多好县长。☆27Updated last year
- Obfuscator based on LLVM-16.0.6☆24Updated this week
- 一个界面基于IMGUI的调试器,目前R3实现☆36Updated 9 months ago
- InfinityHook 支持Win7 到 Win11 最新版本,虚拟机环境及物理机环境☆33Updated last month
- ☆52Updated last year
- 内�核硬件调试器模块,rootkit操作 dump☆31Updated 2 years ago
- tprt ollvm 反混淆 修改 binja il☆31Updated 2 months ago
- An IDA pro plugin to display user-added comments in disassembly and pseudocode views.☆74Updated last year
- IDA Plugin that fills in missing indirect CALL & JMP target information☆115Updated last year
- Injecting into SELinux-protected system service processes under root on Android.☆34Updated 8 months ago
- ☆40Updated 3 months ago
- Win7内核私有符号结构转储☆64Updated 3 years ago