跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式提供了另一种CPU指令的模拟方式,在保持原有unicorn导出接口不变的情况下,采用Hyper-v支持带硬件虚拟化支持的Windows Hypervisor Platform API接口扩展了底层CPU模拟环境实现,支持X86指令集二进制程序模拟平台和调试器.
☆79Dec 17, 2023Updated 2 years ago
Alternatives and similar repositories for unicorn-whpx
Users that are interested in unicorn-whpx are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆23May 8, 2023Updated 2 years ago
- an ida plugin used to decompile vmp☆377Jul 2, 2024Updated last year
- Windows X64 mode use seh in manual mapped dll or manual mapped sys☆79Oct 10, 2022Updated 3 years ago
- Lightweight WINAPI tracing with Pin☆27Aug 22, 2019Updated 6 years ago
- ☆34Dec 15, 2023Updated 2 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Idapro cpu for OpenRISC arch☆15Mar 25, 2017Updated 9 years ago
- windows kernel pagehook☆42Oct 30, 2022Updated 3 years ago
- ☆147Jan 24, 2024Updated 2 years ago
- 笔者在一款基于LLVM编译器架��构的retdec开源反编译器工具的基础上,融合了klee符号执行工具,通过符号执行(Symbolic Execution)引擎动态模拟反编译后的llvm的ir(中间指令集)运行源程序的方法,插桩所有的对x86指令集的thiscall类型函数对t…☆226Apr 6, 2022Updated 3 years ago
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆73Aug 11, 2023Updated 2 years ago
- Radical Windows ARK☆252Apr 18, 2025Updated 11 months ago
- ntos shit☆29Feb 15, 2024Updated 2 years ago
- A kernel module for tracing signal☆31Jan 17, 2023Updated 3 years ago
- Android Security Bug Queries for CheckMarx☆20Sep 13, 2022Updated 3 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- 2023 年 羊城杯 ezAndroid dex VMP 恢复工具☆37Nov 24, 2023Updated 2 years ago
- Dump PDB Symbols including support for Bochs Debugging Format (with wine support)☆14Aug 11, 2023Updated 2 years ago
- Hijack NotifyRoutine for a kernelmode thread☆41Jun 4, 2022Updated 3 years ago
- The Grimoire Hypervisor solution for x86 Processors with experimental nested virtualization support. Remastering with Rust in progress.☆618Feb 24, 2026Updated last month
- A very simple C++ library for download pdb, get rva of function, global variable and offset from struct.☆160Mar 26, 2024Updated 2 years ago
- 从MmPfnData中枚举进程和页目录基址☆209Aug 18, 2023Updated 2 years ago
- ☆27May 4, 2018Updated 7 years ago
- Titan is a VMProtect devirtualizer☆121Mar 6, 2024Updated 2 years ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆68Aug 11, 2023Updated 2 years ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Mirror of https://gitee.com/SmartSmallBoy/hardware-breakpoint☆62May 20, 2024Updated last year
- Hyper-V Research is trendy now☆199May 6, 2024Updated last year
- ☆225Mar 11, 2023Updated 3 years ago
- deobfuscation BR☆55Mar 4, 2024Updated 2 years ago
- ida plugin to parse qt meta data☆85Jan 15, 2025Updated last year
- WinDbg-Samples ExdiGdbSrv fork 修复了一部分Vmware调试的问题☆32Jul 10, 2023Updated 2 years ago
- This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness☆58Sep 12, 2019Updated 6 years ago
- FindFunc is an IDA Pro plugin to find code functions that contain a certain assembly or byte pattern, reference a certain name or string,…☆358Nov 17, 2025Updated 4 months ago
- Helper script for Windows kernel debugging with IDA Pro on native Bochs debugger (including PDB symbols)☆62Aug 11, 2023Updated 2 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- ☆19Aug 28, 2024Updated last year
- frida runtime resolves smali☆94Jan 24, 2026Updated 2 months ago
- 反ida内联汇编花指令☆54Jul 3, 2023Updated 2 years ago
- ☆61Aug 21, 2023Updated 2 years ago
- Using NtCreateFile and NtDeviceIoControlFile to realize the function of winsock(利用NtCreateFile和NtDeviceIoControlFile 实现winsock的功能)☆128Sep 9, 2022Updated 3 years ago
- WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API☆26Apr 24, 2022Updated 3 years ago
- It's a kernel-based keylogger for Windows x86/x64.☆145Sep 18, 2022Updated 3 years ago