trailofbits / flying-sandbox-monsterLinks
Sandboxed, Rust-based, Windows Defender Client
☆181Updated 8 years ago
Alternatives and similar repositories for flying-sandbox-monster
Users that are interested in flying-sandbox-monster are comparing it to the libraries listed below
Sorting:
- AppJailLauncher in Rust☆108Updated 4 years ago
- Full-bin indexation of binary files☆95Updated 7 years ago
- ☆86Updated 8 years ago
- NASM Standard Library for shellcode☆69Updated 9 years ago
- Implementation of the SMM rootkit "The Watcher"☆128Updated 3 years ago
- A tool dedicated to the research of vulnerabilities in hypervisors by creating unusual system configurations.☆185Updated 3 years ago
- Conference slides and White-papers☆358Updated 5 years ago
- ☆172Updated 3 years ago
- Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)☆187Updated 6 years ago
- Hypervisor-Level Debugger based on Radare2 / LibVMI, using VMI IO and debug plugins☆134Updated 6 years ago
- I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016☆164Updated 8 years ago
- Just a simple radare2 Jupyter kernel☆111Updated 7 years ago
- Xenpwn is a toolkit for memory access tracing using hardware-assisted virtualization☆144Updated 9 years ago
- Bunch of techniques potentially used by malware to detect analysis environments☆159Updated 9 years ago
- capstone based disassembler for extracting to binnavi☆228Updated 9 years ago
- Binary Ninja plugin to decompile binaries using RetDec API☆163Updated 7 years ago
- Kernel Address Space Layout Randomization (KASLR) Recovery Software☆98Updated 8 years ago
- ☆70Updated 3 years ago
- A program to draw rectangles from heap traces.☆135Updated 5 years ago
- A novel technique to hide code from debuggers & disassemblers☆156Updated last year
- Imports Reconstructor☆31Updated 9 years ago
- ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks.☆286Updated 9 years ago
- ATrace is a tool for tracing execution of binaries on Windows.☆239Updated 8 years ago
- Run basic functions from stripped binaries cross platform☆111Updated 8 years ago
- Semantic Binary Code Analysis Framework☆124Updated 9 years ago
- Synesthesia, implemented as Yices scripts☆94Updated 8 years ago
- grap: define and match graph patterns within binaries☆171Updated 4 years ago
- Minimal RarVM Toolchain☆234Updated 10 years ago
- A hypervisor for fuzzing built with WHVP and Bochs☆378Updated 6 years ago
- A user-friendly fuzzing and crash triage tool for Windows☆131Updated 5 years ago