Vm introspection

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for netanelc305 from gravatar.com netanelc305

Unverified details

These details have not been verified by PyPI
Meta
  • License: GNU General Public License v3 or later (GPLv3+) (GNU GENERAL PUBLIC LICENSE Version 3, 29 June 2007 Copyright (C) 2007 Free Software Foundation, Inc...)
  • Author: netanelc305
  • Maintainer: netanelc305
  • Requires: Python >=3.9
  • Provides-Extra: test
Classifiers

Project description

Documentation Status

Heimdall is a Virtual Machine (VM) introspection tool built on top of libvmi that simplifies memory inspection and manipulation with OS-level abstractions.

Named after the all-seeing Norse guardian,Heimdall offers deep visibility into VM memory through its interactive Python shell, allowing users to directly access and modify kernel structures. This includes retrieving process lists, modifying attributes like PID or process name, and interacting with other kernel data structures. Heimdall also supports accessing a process's execution context, providing powerful insights and control over VM internals.

This project is highly inspired by:

  • Hilda A powerful wrapper over the LLDB debugger for advanced debugging and binary analysis.
  • Volatility: A memory forensics framework for analyzing volatile memory.
  • DRAKVUF: A virtualization-based agentless monitoring system for malware analysis.
  • rpc-project Minimalistic server (written in C) and a python3 client to allow calling native functions on a remote host for automation purposes

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for netanelc305 from gravatar.com netanelc305

Unverified details

These details have not been verified by PyPI
Meta
  • License: GNU General Public License v3 or later (GPLv3+) (GNU GENERAL PUBLIC LICENSE Version 3, 29 June 2007 Copyright (C) 2007 Free Software Foundation, Inc...)
  • Author: netanelc305
  • Maintainer: netanelc305
  • Requires: Python >=3.9
  • Provides-Extra: test
Classifiers

Release history Release notifications | RSS feed

0.0.2

This version

0.0.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

heimdall_vmi-0.0.1.tar.gz (243.3 kB view details)

Uploaded Source

Built Distribution

heimdall_vmi-0.0.1-py3-none-any.whl (56.6 kB view details)

Uploaded Python 3

File details

Details for the file heimdall_vmi-0.0.1.tar.gz.

File metadata

  • Download URL: heimdall_vmi-0.0.1.tar.gz
  • Upload date:
  • Size: 243.3 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/5.1.1 CPython/3.11.10

File hashes

Hashes for heimdall_vmi-0.0.1.tar.gz
Algorithm Hash digest
SHA256 8dfa8a3cd6318191e0bc5605047f3f4793e3a768e468d6e22f318454a2ba368d
MD5 71a2a918a63da03a83faf845ea505809
BLAKE2b-256 6a7bd50e99964daf8f47fe6b8c7952e15c66c917f66c1ab5de04647042911f9f

See more details on using hashes here.

File details

Details for the file heimdall_vmi-0.0.1-py3-none-any.whl.

File metadata

  • Download URL: heimdall_vmi-0.0.1-py3-none-any.whl
  • Upload date:
  • Size: 56.6 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/5.1.1 CPython/3.11.10

File hashes

Hashes for heimdall_vmi-0.0.1-py3-none-any.whl
Algorithm Hash digest
SHA256 9addb2f6e26452a5952ed43ef101d96afa1fa40b85edfdec0e24ef6b7c18f89a
MD5 d52c061f0d7ee70dd66b667648703080
BLAKE2b-256 4b5674b2a919498ac64a3392f730115b4b891f7166c41ca6df85eb26972aeb60

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page