HyperDbg
BugChecker2002
HyperDbg | BugChecker2002 | |
---|---|---|
6 | 1 | |
2,580 | 9 | |
1.9% | - | |
9.5 | 10.0 | |
7 days ago | over 1 year ago | |
C | C | |
GNU General Public License v3.0 only | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
HyperDbg
-
Reverse Engineering DOS Software as If It Were 1990
https://hyperdbg.org and m1n1 (Apple Silicon) spring to mind as modern supervisor/hypervisor debuggers.
There's nothing modern I'm aware of that lets you press a key combination to get into a hypervisor debug UI like softICE was known for, though. It's all shifted to host-and-target debugging. You'd use a "normal" debugger on one machine (lldb/gdb, WinDbg, IDA, etc.) and either supervised host-to-target connection (network-to-kernel/hypervisor on x86, OCD like JTAG/SWD/CoreSight on embedded) or emulation (for pretty much everything but device driver development).
- HyperDbg Debugger – A debugger designed for analyzing, fuzzing and reversing
-
Petition to add HyperDbg to list of unapproved debuggers
Per the README, HyperDbg uses VT-X. There are no AMD CPUs with VT-X instructions. If you try to run it on AMD, you will get an illegal instruction error.
- HyperDbg: Reinventing Hardware-Assisted Debugging
- HyperDbg/HyperDbg: State-of-the-art native debugging tool (initial release)
BugChecker2002
What are some alternatives?
kernel-fuzzer-for-xen-project - Kernel Fuzzer for Xen Project (KF/x) - Hypervisor-based fuzzing using Xen VM forking, VMI & AFL
HyperPlatform - Intel VT-x based hypervisor aiming to provide a thin VM-exit filtering platform on Windows.
winfsp - Windows File System Proxy - FUSE for Windows [Moved to: https://github.com/winfsp/winfsp]
winfsp - Windows File System Proxy - FUSE for Windows
BugChecker - SoftICE-like kernel debugger for Windows 11
NtRays - Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
fibratus - A modern tool for Windows kernel exploration and tracing with a focus on security
PrivFu - Kernel mode WinDbg extension and PoCs for token privilege investigation.