Low-Observable Physical Host Instrumentation: A suite of tools supporting introspection and semantic gap reconstruction for both physical and virtual machines.
☆30Jul 12, 2016Updated 9 years ago
Alternatives and similar repositories for LO-PHI
Users that are interested in LO-PHI are comparing it to the libraries listed below
Sorting:
- Linux kernels (CGC DECREE and vanilla) with S2E extensions☆24Jul 6, 2024Updated last year
- Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis☆41Sep 12, 2016Updated 9 years ago
- Next major release of sniffMyPackets - Now with added packet loving☆12Mar 19, 2015Updated 10 years ago
- x86 Dynamic Binary Translator Library☆34Dec 19, 2020Updated 5 years ago
- DEPRECATED avatar-panda repository; please use https://github.com/panda-re/panda☆13Mar 19, 2021Updated 4 years ago
- Code for my blog post on combining S2E and Kaitai Struct☆15Jun 1, 2019Updated 6 years ago
- Battalion is a tool used to automate reconnaissance and assist both pentesters and internal security/admin teams.☆43Jan 13, 2026Updated last month
- Plugin for IDA Pro to convert assembler to LLVM IR☆20Nov 15, 2016Updated 9 years ago
- A blanket execution/min hash semantic hash tool for binary function identification☆18Apr 22, 2016Updated 9 years ago
- ☆19May 18, 2015Updated 10 years ago
- Using LibVMI to detect malware☆32Apr 3, 2022Updated 3 years ago
- Presentation Slides and Resources☆16Jun 12, 2024Updated last year
- Memory forensics of virtualization environments☆48Oct 4, 2014Updated 11 years ago
- Dynamic instrumentation of the Linux kernel☆41Feb 24, 2015Updated 11 years ago
- S2E Core Engine Library☆15Jan 7, 2020Updated 6 years ago
- Interactive Virtual Machine Introspection☆18Sep 27, 2017Updated 8 years ago
- NSA Playset implant for bridging airgaps without radio☆17Sep 28, 2015Updated 10 years ago
- Timeless debugging with symbolic execution and processor trace☆75Jan 23, 2021Updated 5 years ago
- QEMU VM with generic KVM extensions for symbolic execution☆26Updated this week
- QEmu backend for avatar²☆22Mar 29, 2025Updated 11 months ago
- S2E plugins library☆17Jan 7, 2020Updated 6 years ago
- ☆20Jul 18, 2019Updated 6 years ago
- ☆73Apr 30, 2020Updated 5 years ago
- Code for the paper EvilCoder: Automated Bug Insertion at ACSAC 2016☆46Jan 18, 2017Updated 9 years ago
- Similarity Analysis to Defeat Malware Compiler Variations☆25Oct 3, 2017Updated 8 years ago
- deprecated☆46Mar 20, 2019Updated 6 years ago
- Virtual machine introspection library based on libvmi - parts of this work have been funded by Deutsche Forschungsgemeinschaft (DFG) – pr…☆31Mar 3, 2022Updated 4 years ago
- BAP Plugins Repository☆58Nov 20, 2020Updated 5 years ago
- VMI-Unpack - A Virtual Machine Introspection (VMI) based generic unpacker.☆57Jan 16, 2020Updated 6 years ago
- deprecated☆19Jan 15, 2019Updated 7 years ago
- Bro Intel Feed Linter☆26Aug 30, 2019Updated 6 years ago
- KVM-based virtual machine introspection for malware analysis☆29May 11, 2017Updated 8 years ago
- ☆105Apr 20, 2015Updated 10 years ago
- A Genetic File, Syscall and Network Fuzzer.☆58May 28, 2017Updated 8 years ago
- LRSan: Detecting Lacking-Recheck Bugs in OS Kernels☆30Feb 23, 2019Updated 7 years ago
- deprecated☆27Mar 20, 2019Updated 6 years ago
- C++ convention/style checker in Python using libclang.☆42Jan 4, 2012Updated 14 years ago
- ☆117Aug 9, 2016Updated 9 years ago
- Automated Memory Analysis (Black Hat Arsenal 2014)☆32Aug 4, 2014Updated 11 years ago