radare2-extras icon indicating copy to clipboard operation
radare2-extras copied to clipboard
verified publisher icon radareorg

Implement debugger for LibVMI

Open radare opened this issue 10 years ago • 2 comments

http://libvmi.com/

supporting KVM/XEN/QEMU io and debugging with r2.

The api is pretty simple, so its an easy task

radare avatar Feb 09 '15 10:02 radare

@radare @jvoisin @crowell would be awesome to do that before the REcon :) Towards Transparent Dynamic Binary Instrumentation using Virtual Machine Introspection by Julian Kirsch

XVilka avatar May 12 '15 06:05 XVilka

Hi,

I'm currently developing Nitro, a syscall interception library based on KVM. https://github.com/KVM-VMI/kvm-vmi

I have some experience working with LibVMI, and i already made some contributions there.

I would be very happy to work on having radare2 debugging a process out of the vm, using virtual machine introspection technologies.

Does anyone know the state of the art here regarding the ongoing projects or attempt to build this ? I would like to avoid duplicating and starting from scratch a project like this.

The latest project i heard of is this one: https://github.com/radareorg/r2con-2017/blob/master/talks/zdbg/zdbg-r2con-2017.pdf zdbg : hypervisor debugging with r2

Any comments, feedback about it ? Thanks !

Wenzel avatar Nov 07 '17 15:11 Wenzel