trailofbits / flying-sandbox-monsterLinks
Sandboxed, Rust-based, Windows Defender Client
☆181Updated 8 years ago
Alternatives and similar repositories for flying-sandbox-monster
Users that are interested in flying-sandbox-monster are comparing it to the libraries listed below
Sorting:
- AppJailLauncher in Rust☆108Updated 4 years ago
- ☆86Updated 8 years ago
- Full-bin indexation of binary files☆95Updated 7 years ago
- A tool dedicated to the research of vulnerabilities in hypervisors by creating unusual system configurations.☆185Updated 3 years ago
- Implementation of the SMM rootkit "The Watcher"☆128Updated 3 years ago
- Hypervisor-Level Debugger based on Radare2 / LibVMI, using VMI IO and debug plugins☆134Updated 6 years ago
- NASM Standard Library for shellcode☆69Updated 9 years ago
- capstone based disassembler for extracting to binnavi☆229Updated 9 years ago
- ☆172Updated 3 years ago
- Xenpwn is a toolkit for memory access tracing using hardware-assisted virtualization☆144Updated 9 years ago
- Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)☆187Updated 6 years ago
- rVMI - A New Paradigm For Full System Analysis☆357Updated 7 years ago
- Conference slides and White-papers☆358Updated 5 years ago
- ☆70Updated 3 years ago
- ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks.☆287Updated 9 years ago
- I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016☆168Updated 8 years ago
- Bunch of techniques potentially used by malware to detect analysis environments☆159Updated 9 years ago
- Run basic functions from stripped binaries cross platform☆111Updated 8 years ago
- A novel technique to hide code from debuggers & disassemblers☆156Updated last year
- Semantic Binary Code Analysis Framework☆124Updated 9 years ago
- Binary Ninja plugin to decompile binaries using RetDec API☆163Updated 7 years ago
- A program to draw rectangles from heap traces.☆135Updated 5 years ago
- ATrace is a tool for tracing execution of binaries on Windows.☆239Updated 9 years ago
- C++ application that uses memory and code hooks to detect packers☆271Updated 7 years ago
- a Japanese food keeps you sane☆119Updated 10 years ago
- BitErrant☆59Updated 8 years ago
- A hypervisor for fuzzing built with WHVP and Bochs☆378Updated 6 years ago
- Run any command transparently in a VM (this repo isn't part of Cappsule)☆27Updated 8 years ago
- PC firmware exploitation tool and library☆257Updated 3 years ago
- A patch analysis tool☆363Updated 5 years ago