Open radare opened 9 years ago
XVilka
commented
9 years ago @radare @jvoisin @crowell would be awesome to do that before the REcon :)
Towards Transparent Dynamic Binary Instrumentation using Virtual Machine Introspection by Julian Kirsch
Wenzel
commented
6 years ago Hi,
I'm currently developing Nitro, a syscall interception library based on KVM. https://github.com/KVM-VMI/kvm-vmi
I have some experience working with LibVMI, and i already made some contributions there.
I would be very happy to work on having radare2 debugging a process out of the vm, using virtual machine introspection technologies.
Does anyone know the state of the art here regarding the ongoing projects or attempt to build this ? I would like to avoid duplicating and starting from scratch a project like this.
The latest project i heard of is this one: https://github.com/radareorg/r2con-2017/blob/master/talks/zdbg/zdbg-r2con-2017.pdf zdbg : hypervisor debugging with r2
Any comments, feedback about it ? Thanks !
http://libvmi.com/
supporting KVM/XEN/QEMU io and debugging with r2.
The api is pretty simple, so its an easy task