{"id":36124,"date":"2025-02-05T11:26:59","date_gmt":"2025-02-05T11:26:59","guid":{"rendered":"https:\/\/kalilinuxtutorials.com\/?p=36124"},"modified":"2025-02-05T11:27:01","modified_gmt":"2025-02-05T11:27:01","slug":"winvisor","status":"publish","type":"post","link":"https:\/\/kalilinuxtutorials.com\/winvisor\/","title":{"rendered":"WinVisor : A Hypervisor-Based Emulator For Windows x64"},"content":{"rendered":"\n

WinVisor is a hypervisor-based emulator designed to emulate Windows x64 user-mode executables. <\/p>\n\n\n\n

It leverages the Windows Hypervisor Platform (WHP) API<\/strong>, introduced in Windows 10 (RS4), to create a virtualized environment for executing applications. <\/p>\n\n\n\n

By utilizing WHP, WinVisor enables developers to emulate processes within a virtual CPU while maintaining compatibility with the host operating system.<\/p>\n\n\n\n

Core Functionalities<\/strong><\/h2>\n\n\n\n
    \n
  1. Virtual CPU Creation:<\/strong><\/li>\n<\/ol>\n\n\n\n
      \n
    • WinVisor employs WHP to create a virtual CPU that operates primarily in user mode (CPL3), with minimal kernel-mode (CPL0) execution for initialization.<\/li>\n\n\n\n
    • The CPU state is configured by setting control registers, MSRs, paging tables, and other essential structures before switching to CPL3 for application execution.<\/li>\n<\/ul>\n\n\n\n
        \n
      1. Memory Management:<\/strong><\/li>\n<\/ol>\n\n\n\n
          \n
        • Virtual memory from the host process is mapped directly into the guest’s physical memory.<\/li>\n\n\n\n
        • A paging table maps virtual addresses to physical pages, allocating memory on demand and swapping older pages when necessary.<\/li>\n<\/ul>\n\n\n\n
            \n
          1. Process Initialization:<\/strong><\/li>\n<\/ol>\n\n\n\n
              \n
            • Instead of manually constructing internal structures like the Process Environment Block (PEB), WinVisor clones the entire address space of a suspended target process, ensuring accurate memory layout.<\/li>\n\n\n\n
            • The emulator handles Import Address Table (IAT) and Thread Local Storage (TLS) adjustments to prevent premature DLL loading and callback execution.<\/li>\n<\/ul>\n\n\n\n
                \n
              1. System Call Handling:<\/strong><\/li>\n<\/ol>\n\n\n\n
                  \n
                • Syscalls are intercepted and forwarded to the host OS for execution, ensuring compatibility with native system behavior.<\/li>\n\n\n\n
                • Legacy interrupt-based syscalls are also managed through pre-configured interrupt descriptor table entries.<\/li>\n<\/ul>\n\n\n\n

                  To run an application under WinVisor, execute the following command:<\/p>\n\n\n\n

                  WinVisor.exe <target_executable_path><\/code><\/pre>\n\n\n\n
                  For example:<\/p>\n\n\n\n
                  WinVisor.exe c:\\windows\\system32\\ping.exe 8.8.8.8<\/code><\/pre>\n\n\n\n
                  Ensure that the “Windows Hypervisor Platform” is enabled in Windows Features if initialization errors occur.<\/p>\n\n\n\n
                    \n
                  • Single-thread Support:<\/strong> Only one thread is virtualized; additional threads execute natively.<\/li>\n\n\n\n
                  • Exception Handling:<\/strong> Virtualized software exceptions are not supported.<\/li>\n\n\n\n
                  • Security Concerns:<\/strong> The shared memory model allows potential corruption of host hypervisor modules.<\/li>\n\n\n\n
                  • Partial GUI Virtualization:<\/strong> Applications like notepad.exe<\/code> are only partially virtualized due to nested GUI-related syscalls.<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"
                    WinVisor is a hypervisor-based emulator designed to emulate Windows x64 user-mode executables. It leverages the Windows Hypervisor Platform (WHP) API, introduced in Windows 10 (RS4), to create a virtualized environment for executing applications. By utilizing WHP, WinVisor enables developers to emulate processes within a virtual CPU while maintaining compatibility with the host operating system. Core […]<\/p>\n","protected":false},"author":12,"featured_media":36127,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"","fifu_image_alt":"","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[20,45],"tags":[737,6321,6052,6325,7072],"class_list":["post-36124","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cyber-security","category-windows","tag-cybersecurity","tag-informationsecurity","tag-kalilinux","tag-kalilinuxtools","tag-winvisor"],"yoast_head":"\nWinVisor : A Hypervisor-Based Emulator For Windows x64<\/title>\n<meta name=\"description\" content=\"WinVisor is a hypervisor-based emulator designed to emulate Windows x64 user-mode executables. It leverages the Windows Hypervisor Platform\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/kalilinuxtutorials.com\/winvisor\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"WinVisor : A Hypervisor-Based Emulator For Windows x64\" \/>\n<meta property=\"og:description\" content=\"WinVisor is a hypervisor-based emulator designed to emulate Windows x64 user-mode executables. It leverages the Windows Hypervisor Platform\" \/>\n<meta property=\"og:url\" content=\"https:\/\/kalilinuxtutorials.com\/winvisor\/\" \/>\n<meta property=\"og:site_name\" content=\"Kali Linux Tutorials\" \/>\n<meta property=\"article:published_time\" content=\"2025-02-05T11:26:59+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-02-05T11:27:01+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/02\/WinVisor.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"900\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/webp\" \/>\n<meta name=\"author\" content=\"Varshini\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@CyberEdition\" \/>\n<meta name=\"twitter:site\" content=\"@CyberEdition\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Varshini\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/winvisor\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/winvisor\/\"},\"author\":{\"name\":\"Varshini\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/3c3b3f82a74146532c4def299fe069fa\"},\"headline\":\"WinVisor : A Hypervisor-Based Emulator For Windows x64\",\"datePublished\":\"2025-02-05T11:26:59+00:00\",\"dateModified\":\"2025-02-05T11:27:01+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/winvisor\/\"},\"wordCount\":301,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/winvisor\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/02\/WinVisor.webp\",\"keywords\":[\"cybersecurity\",\"informationsecurity\",\"kalilinux\",\"kalilinuxtools\",\"WinVisor\"],\"articleSection\":[\"Cyber security\",\"Windows\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/kalilinuxtutorials.com\/winvisor\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/winvisor\/\",\"url\":\"https:\/\/kalilinuxtutorials.com\/winvisor\/\",\"name\":\"WinVisor : A Hypervisor-Based Emulator For Windows x64\",\"isPartOf\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/winvisor\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/winvisor\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/02\/WinVisor.webp\",\"datePublished\":\"2025-02-05T11:26:59+00:00\",\"dateModified\":\"2025-02-05T11:27:01+00:00\",\"description\":\"WinVisor is a hypervisor-based emulator designed to emulate Windows x64 user-mode executables. It leverages the Windows Hypervisor Platform\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/kalilinuxtutorials.com\/winvisor\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/winvisor\/#primaryimage\",\"url\":\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/02\/WinVisor.webp\",\"contentUrl\":\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/02\/WinVisor.webp\",\"width\":1600,\"height\":900},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#website\",\"url\":\"https:\/\/kalilinuxtutorials.com\/\",\"name\":\"Kali Linux Tutorials\",\"description\":\"Kali Linux Tutorials\",\"publisher\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/kalilinuxtutorials.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#organization\",\"name\":\"Kali Linux Tutorials\",\"url\":\"https:\/\/kalilinuxtutorials.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png\",\"contentUrl\":\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png\",\"width\":272,\"height\":90,\"caption\":\"Kali Linux Tutorials\"},\"image\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/x.com\/CyberEdition\",\"https:\/\/www.threads.com\/@cybersecurityedition\",\"https:\/\/www.linkedin.com\/company\/cyberedition\",\"https:\/\/www.instagram.com\/cybersecurityedition\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/3c3b3f82a74146532c4def299fe069fa\",\"name\":\"Varshini\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/f19f43637c0f83fb3dcfb498f306b2a9ac0025ce85840ab52ee8c01f5361f269?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/f19f43637c0f83fb3dcfb498f306b2a9ac0025ce85840ab52ee8c01f5361f269?s=96&d=mm&r=g\",\"caption\":\"Varshini\"},\"description\":\"Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.\",\"sameAs\":[\"http:\/\/kalilinuxtutorials.com\",\"https:\/\/www.linkedin.com\/in\/senthamil-selvan-14043a285\/\"],\"url\":\"https:\/\/kalilinuxtutorials.com\/author\/vinayakagrawal\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"WinVisor : A Hypervisor-Based Emulator For Windows x64","description":"WinVisor is a hypervisor-based emulator designed to emulate Windows x64 user-mode executables. It leverages the Windows Hypervisor Platform","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/kalilinuxtutorials.com\/winvisor\/","og_locale":"en_US","og_type":"article","og_title":"WinVisor : A Hypervisor-Based Emulator For Windows x64","og_description":"WinVisor is a hypervisor-based emulator designed to emulate Windows x64 user-mode executables. It leverages the Windows Hypervisor Platform","og_url":"https:\/\/kalilinuxtutorials.com\/winvisor\/","og_site_name":"Kali Linux Tutorials","article_published_time":"2025-02-05T11:26:59+00:00","article_modified_time":"2025-02-05T11:27:01+00:00","og_image":[{"width":1600,"height":900,"url":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/02\/WinVisor.webp","type":"image\/webp"}],"author":"Varshini","twitter_card":"summary_large_image","twitter_creator":"@CyberEdition","twitter_site":"@CyberEdition","twitter_misc":{"Written by":"Varshini","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/kalilinuxtutorials.com\/winvisor\/#article","isPartOf":{"@id":"https:\/\/kalilinuxtutorials.com\/winvisor\/"},"author":{"name":"Varshini","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/3c3b3f82a74146532c4def299fe069fa"},"headline":"WinVisor : A Hypervisor-Based Emulator For Windows x64","datePublished":"2025-02-05T11:26:59+00:00","dateModified":"2025-02-05T11:27:01+00:00","mainEntityOfPage":{"@id":"https:\/\/kalilinuxtutorials.com\/winvisor\/"},"wordCount":301,"commentCount":0,"publisher":{"@id":"https:\/\/kalilinuxtutorials.com\/#organization"},"image":{"@id":"https:\/\/kalilinuxtutorials.com\/winvisor\/#primaryimage"},"thumbnailUrl":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/02\/WinVisor.webp","keywords":["cybersecurity","informationsecurity","kalilinux","kalilinuxtools","WinVisor"],"articleSection":["Cyber security","Windows"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/kalilinuxtutorials.com\/winvisor\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/kalilinuxtutorials.com\/winvisor\/","url":"https:\/\/kalilinuxtutorials.com\/winvisor\/","name":"WinVisor : A Hypervisor-Based Emulator For Windows x64","isPartOf":{"@id":"https:\/\/kalilinuxtutorials.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/kalilinuxtutorials.com\/winvisor\/#primaryimage"},"image":{"@id":"https:\/\/kalilinuxtutorials.com\/winvisor\/#primaryimage"},"thumbnailUrl":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/02\/WinVisor.webp","datePublished":"2025-02-05T11:26:59+00:00","dateModified":"2025-02-05T11:27:01+00:00","description":"WinVisor is a hypervisor-based emulator designed to emulate Windows x64 user-mode executables. It leverages the Windows Hypervisor Platform","inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/kalilinuxtutorials.com\/winvisor\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/kalilinuxtutorials.com\/winvisor\/#primaryimage","url":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/02\/WinVisor.webp","contentUrl":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/02\/WinVisor.webp","width":1600,"height":900},{"@type":"WebSite","@id":"https:\/\/kalilinuxtutorials.com\/#website","url":"https:\/\/kalilinuxtutorials.com\/","name":"Kali Linux Tutorials","description":"Kali Linux Tutorials","publisher":{"@id":"https:\/\/kalilinuxtutorials.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/kalilinuxtutorials.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/kalilinuxtutorials.com\/#organization","name":"Kali Linux Tutorials","url":"https:\/\/kalilinuxtutorials.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/","url":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png","contentUrl":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png","width":272,"height":90,"caption":"Kali Linux Tutorials"},"image":{"@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/CyberEdition","https:\/\/www.threads.com\/@cybersecurityedition","https:\/\/www.linkedin.com\/company\/cyberedition","https:\/\/www.instagram.com\/cybersecurityedition\/"]},{"@type":"Person","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/3c3b3f82a74146532c4def299fe069fa","name":"Varshini","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/f19f43637c0f83fb3dcfb498f306b2a9ac0025ce85840ab52ee8c01f5361f269?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f19f43637c0f83fb3dcfb498f306b2a9ac0025ce85840ab52ee8c01f5361f269?s=96&d=mm&r=g","caption":"Varshini"},"description":"Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.","sameAs":["http:\/\/kalilinuxtutorials.com","https:\/\/www.linkedin.com\/in\/senthamil-selvan-14043a285\/"],"url":"https:\/\/kalilinuxtutorials.com\/author\/vinayakagrawal\/"}]}},"jetpack_featured_media_url":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/02\/WinVisor.webp","jetpack_sharing_enabled":true,"jetpack-related-posts":[{"id":6276,"url":"https:\/\/kalilinuxtutorials.com\/applepie-hypervisor-fuzzing-whvp-bochs\/","url_meta":{"origin":36124,"position":0},"title":"Applepie : A Hypervisor For Fuzzing Built With WHVP & Bochs","author":"R K","date":"August 22, 2019","format":false,"excerpt":"Hello! Welcome to applepie! This is a tool designed for fuzzing, introspection, and finding bugs! This is a hypervisor using the Windows Hypervisor Platform API present in recent versions of Windows (specifically this was developed and tested on Windows 10 17763). Bochs is used for providing deep introspection and device\u2026","rel":"","context":"In "Kali Linux"","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/img.youtube.com\/vi\/qErEb5h9CwA\/0.jpg?resize=350%2C200","width":350,"height":200},"classes":[]},{"id":17800,"url":"https:\/\/kalilinuxtutorials.com\/speakeasy\/","url_meta":{"origin":36124,"position":1},"title":"Speakeasy : Windows Kernel And User Mode Emulation","author":"R K","date":"September 16, 2021","format":false,"excerpt":"Speakeasy is a portable, modular, binary emulator designed to emulate Windows kernel and user mode malware. Check out the overview in the first\u00a0Speakeasy blog post. Instead of attempting to perform dynamic analysis using an entire virtualized operating system, Speakeasy will emulate specific components of Windows. Specifically, by emulating operating system\u2026","rel":"","context":"In "Kali Linux"","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/1.bp.blogspot.com\/-IwOL8AeecUQ\/YTD3QTYKlmI\/AAAAAAAAKpg\/ZyIJAK43im4uX1TFGMD7YK58BteZIcjtwCLcBGAsYHQ\/s951\/w%2B%25281%2529.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/1.bp.blogspot.com\/-IwOL8AeecUQ\/YTD3QTYKlmI\/AAAAAAAAKpg\/ZyIJAK43im4uX1TFGMD7YK58BteZIcjtwCLcBGAsYHQ\/s951\/w%2B%25281%2529.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/1.bp.blogspot.com\/-IwOL8AeecUQ\/YTD3QTYKlmI\/AAAAAAAAKpg\/ZyIJAK43im4uX1TFGMD7YK58BteZIcjtwCLcBGAsYHQ\/s951\/w%2B%25281%2529.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/1.bp.blogspot.com\/-IwOL8AeecUQ\/YTD3QTYKlmI\/AAAAAAAAKpg\/ZyIJAK43im4uX1TFGMD7YK58BteZIcjtwCLcBGAsYHQ\/s951\/w%2B%25281%2529.png?resize=700%2C400&ssl=1 2x"},"classes":[]},{"id":12260,"url":"https:\/\/kalilinuxtutorials.com\/uemu\/","url_meta":{"origin":36124,"position":2},"title":"uEmu : Tiny Cute Emulator Plugin For IDA Based On Unicorn","author":"R K","date":"March 14, 2021","format":false,"excerpt":"uEmu is a tiny cute emulator plugin for IDA based on unicorn engine. Supports following architectures out of the box: x86, x64, ARM, ARM64, MIPS, MIPS64. What is it GOOD for? Emulate bare metal code (bootloaders, embedded firmware etc)Emulate standalone functions What is it BAD for? Emulate complex OS code\u2026","rel":"","context":"In "Kali Linux"","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":28554,"url":"https:\/\/kalilinuxtutorials.com\/web-hacking-playground\/","url_meta":{"origin":36124,"position":3},"title":"Web-Hacking-Playground : Web Application With Vulnerabilities Found In Real Cases, Both In Pentests And In Bug Bounty Programs","author":"R K","date":"March 9, 2023","format":false,"excerpt":"Web Hacking Playground is a controlled web hacking environment. It consists of vulnerabilities found in real cases, both in pentests and in Bug Bounty programs. The objective is that users can practice with them, and learn to detect and exploit them. Other topics of interest will also be addressed, such\u2026","rel":"","context":"In "Kali Linux"","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEj7mKLgIapSJN4Wy5UAKMvppcXPCMK90_5kNvFfjz_qzRY_Da0npVkkeM3cYQS3YHsd5wd0hs9uKMCO2zKfwUEXjKFxPyV0Z0Am6hr8s-1scw_gQZnueuFHqNbsbwgFDkhEdvEQz8RvS7JA3IROhVhyNtE7PVr1hQwtt5AoF9BfWwU9ht4ZcxR4vMeO\/s16000\/hacker.jpg?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEj7mKLgIapSJN4Wy5UAKMvppcXPCMK90_5kNvFfjz_qzRY_Da0npVkkeM3cYQS3YHsd5wd0hs9uKMCO2zKfwUEXjKFxPyV0Z0Am6hr8s-1scw_gQZnueuFHqNbsbwgFDkhEdvEQz8RvS7JA3IROhVhyNtE7PVr1hQwtt5AoF9BfWwU9ht4ZcxR4vMeO\/s16000\/hacker.jpg?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEj7mKLgIapSJN4Wy5UAKMvppcXPCMK90_5kNvFfjz_qzRY_Da0npVkkeM3cYQS3YHsd5wd0hs9uKMCO2zKfwUEXjKFxPyV0Z0Am6hr8s-1scw_gQZnueuFHqNbsbwgFDkhEdvEQz8RvS7JA3IROhVhyNtE7PVr1hQwtt5AoF9BfWwU9ht4ZcxR4vMeO\/s16000\/hacker.jpg?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEj7mKLgIapSJN4Wy5UAKMvppcXPCMK90_5kNvFfjz_qzRY_Da0npVkkeM3cYQS3YHsd5wd0hs9uKMCO2zKfwUEXjKFxPyV0Z0Am6hr8s-1scw_gQZnueuFHqNbsbwgFDkhEdvEQz8RvS7JA3IROhVhyNtE7PVr1hQwtt5AoF9BfWwU9ht4ZcxR4vMeO\/s16000\/hacker.jpg?resize=700%2C400&ssl=1 2x"},"classes":[]},{"id":8895,"url":"https:\/\/kalilinuxtutorials.com\/qiling\/","url_meta":{"origin":36124,"position":4},"title":"Qiling : Advanced Binary Emulation Framework","author":"R K","date":"February 9, 2020","format":false,"excerpt":"Qiling is an advanced binary emulation framework, with the following features: Cross platform: Windows, MacOS, Linux, BSDCross architecture: X86, X86_64, Arm, Arm64, MipsMultiple file formats: PE, MachO, ELFEmulate & sandbox machine code in a isolated environmentProvide high level API to setup & configure the sandboxFine-grain instrumentation: allow hooks at various\u2026","rel":"","context":"In "Kali Linux"","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/img.youtube.com\/vi\/p17ONUbCnUU\/0.jpg?resize=350%2C200","width":350,"height":200},"classes":[]},{"id":1151,"url":"https:\/\/kalilinuxtutorials.com\/microsoft-windows-hacking-pack-whp\/","url_meta":{"origin":36124,"position":5},"title":"Microsoft Windows Hacking Pack – WHP","author":"R K","date":"May 1, 2018","format":false,"excerpt":"Tools here for Windows Hacking Pack are from different sources. The repo is generally licensed with WTFPL, but some content may be not (eg. sysinternals). \"pes\" means \"PE Scambled\". It's useful sometimes. Remote Exploits For Windows Hacking Pack ========================================= Windows 2000 \/ XP SP1 MS05-039 Microsoft Plug and Play Service\u2026","rel":"","context":"In "Kali Linux"","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2018\/04\/button_download.png?resize=350%2C200","width":350,"height":200},"classes":[]}],"_links":{"self":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/posts\/36124","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/comments?post=36124"}],"version-history":[{"count":3,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/posts\/36124\/revisions"}],"predecessor-version":[{"id":36129,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/posts\/36124\/revisions\/36129"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/media\/36127"}],"wp:attachment":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/media?parent=36124"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/categories?post=36124"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/tags?post=36124"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}