Vm introspection

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for netanelc305 from gravatar.com netanelc305

Unverified details

These details have not been verified by PyPI
Meta
  • License: GNU General Public License v3 or later (GPLv3+) (GNU GENERAL PUBLIC LICENSE Version 3, 29 June 2007 Copyright (C) 2007 Free Software Foundation, Inc...)
  • Author: netanelc305
  • Maintainer: netanelc305
  • Requires: Python >=3.9
  • Provides-Extra: test
Classifiers

Project description

Documentation Status

Heimdall is a Virtual Machine (VM) introspection tool built on top of libvmi that simplifies memory inspection and manipulation with OS-level abstractions.

Named after the all-seeing Norse guardian,Heimdall offers deep visibility into VM memory through its interactive Python shell, allowing users to directly access and modify kernel structures. This includes retrieving process lists, modifying attributes like PID or process name, and interacting with other kernel data structures. Heimdall also supports accessing a process's execution context, providing powerful insights and control over VM internals.

This project is highly inspired by:

  • Hilda A powerful wrapper over the LLDB debugger for advanced debugging and binary analysis.
  • Volatility: A memory forensics framework for analyzing volatile memory.
  • DRAKVUF: A virtualization-based agentless monitoring system for malware analysis.
  • rpc-project Minimalistic server (written in C) and a python3 client to allow calling native functions on a remote host for automation purposes

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for netanelc305 from gravatar.com netanelc305

Unverified details

These details have not been verified by PyPI
Meta
  • License: GNU General Public License v3 or later (GPLv3+) (GNU GENERAL PUBLIC LICENSE Version 3, 29 June 2007 Copyright (C) 2007 Free Software Foundation, Inc...)
  • Author: netanelc305
  • Maintainer: netanelc305
  • Requires: Python >=3.9
  • Provides-Extra: test
Classifiers

Release history Release notifications | RSS feed

This version

0.0.2

0.0.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

heimdall_vmi-0.0.2.tar.gz (247.2 kB view details)

Uploaded Source

Built Distribution

heimdall_vmi-0.0.2-py3-none-any.whl (56.7 kB view details)

Uploaded Python 3

File details

Details for the file heimdall_vmi-0.0.2.tar.gz.

File metadata

  • Download URL: heimdall_vmi-0.0.2.tar.gz
  • Upload date:
  • Size: 247.2 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/5.1.1 CPython/3.11.10

File hashes

Hashes for heimdall_vmi-0.0.2.tar.gz
Algorithm Hash digest
SHA256 3343bbf702406c09286344ee96f939621f1e6b8120a11325336a7cc1a5c15cc8
MD5 3ac36eb6bcf3b1863a40935977527083
BLAKE2b-256 a35643f761ff5991e6fe69fb6bc36e1a2076341ba08bf1374b993224d86772fc

See more details on using hashes here.

File details

Details for the file heimdall_vmi-0.0.2-py3-none-any.whl.

File metadata

  • Download URL: heimdall_vmi-0.0.2-py3-none-any.whl
  • Upload date:
  • Size: 56.7 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/5.1.1 CPython/3.11.10

File hashes

Hashes for heimdall_vmi-0.0.2-py3-none-any.whl
Algorithm Hash digest
SHA256 17e2b6f2702b475f66022b5c6fd8d56db80a6a8254fceeeec300a754fbef85c3
MD5 ebed7c30d6020709eed5a5c27790d0e3
BLAKE2b-256 4319359e98ca05e08972e0648948bbd67b5cab01721dad06e2b06e59c769811a

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page