4 Repos
Mechanisms to install taps on emulated address ranges to monitor or modify data during CPU access.
Distinct from Emulated Memory Access: Active interception/trapping of access for monitoring, rather than just reading/writing values to a space.
Explore 4 awesome GitHub repositories matching software engineering & architecture · Memory Access Interception. Refine with filters or upvote what's useful.
This project is a suite of runtime diagnostic tools designed to detect memory leaks, concurrency races, and language-specification violations during software execution. It provides a collection of dynamic analysis tools that identify addressability issues, uninitialized memory usage, and memory safety bugs in applications. The toolset includes a thread safety analyzer to identify data races and deadlocks in concurrent code, as well as an undefined behavior sanitizer to detect operations that violate language specifications. The system covers broad capabilities in memory safety monitoring and
Provides interception of memory access to monitor heap usage and detect invalid frees.
MAME is a vintage hardware emulation platform designed to recreate the circuitry of arcade games, computers, and consoles to run original software on modern devices. It functions as a retro gaming preservation framework for managing, verifying, and archiving ROM sets and disk images to ensure long-term software accessibility. The project features a system debugging tool for inspecting emulated memory, CPU registers, and execution flow via breakpoints and disassembly. It also includes a Lua-based automation layer that exposes core system state and hardware controls for custom behavior and anal
Provides mechanisms to install taps on emulated address ranges to monitor or modify data during CPU access.
Qira ist ein Laufzeitanalyse-Tool und interaktiver Binär-Debugger für den QEMU-Emulator. Es fungiert als Binär-Execution-Tracer, der eine vollständige Timeline von Instruktionsaufrufen aufzeichnet und ein System zur Überwachung von Speicheroperationen innerhalb von Gastprozessen bereitstellt. Das Projekt ermöglicht die Analyse kompilierter Binärdateien durch das Tracing der Instruktionsausführung und das Mapping roher Speicheradressen auf benutzerdefinierte Annotationen. Es enthält Funktionen für State-Snapshotting zur Verwaltung von Execution-Forks, was die Navigation durch divergierende Logikpfade sowie die Inspektion von CPU-Registerzuständen und System-Call-Argumenten an jedem beliebigen Punkt der aufgezeichneten Timeline ermöglicht. Das System deckt ein breites Spektrum an dynamischer Programmanalyse und Aufgaben im Bereich Binär-Reverse-Engineering ab. Dies umfasst die Überwachung von Speicherzugriffsmustern zur Identifizierung von Instruktionen, die spezifische Daten modifizieren, die Analyse von Malware-Verhalten in kontrollierten Umgebungen sowie die Durchführung von Software-Vulnerability-Research.
Tracks read and write operations to specific memory addresses during the runtime of a guest process.
HyperDbg is a hardware-assisted kernel-mode debugging platform that leverages virtualization to monitor and control system execution. By utilizing hypervisor-level primitives, it enables deep system analysis and instrumentation without relying on standard operating system debugging interfaces. The framework provides a comprehensive environment for inspecting both kernel and user-mode processes, allowing for granular control over execution flow and system state. The project distinguishes itself through a transparent debugging layer designed to remain invisible to the target environment. It emp
Identifies which instructions read from or write to specific memory structures.