{"id":15039670,"url":"https://github.com/tklengyel/drakvuf","last_synced_at":"2025-05-14T14:08:08.108Z","repository":{"id":19985850,"uuid":"23253045","full_name":"tklengyel/drakvuf","owner":"tklengyel","description":"DRAKVUF Black-box Binary Analysis","archived":false,"fork":false,"pushed_at":"2025-05-01T23:25:44.000Z","size":46839,"stargazers_count":1118,"open_issues_count":108,"forks_count":257,"subscribers_count":61,"default_branch":"main","last_synced_at":"2025-05-01T23:28:26.253Z","etag":null,"topics":["introspection","malware-analysis","virtualization","xen"],"latest_commit_sha":null,"homepage":"https://drakvuf.com","language":"C++","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/tklengyel.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"COPYING","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2014-08-23T10:00:28.000Z","updated_at":"2025-05-01T16:48:11.000Z","dependencies_parsed_at":"2023-10-23T23:27:17.311Z","dependency_job_id":"cb98eb8d-31dd-4abf-b1d5-40148d0aa7e9","html_url":"https://github.com/tklengyel/drakvuf","commit_stats":null,"previous_names":[],"tags_count":10,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tklengyel%2Fdrakvuf","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tklengyel%2Fdrakvuf/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tklengyel%2Fdrakvuf/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tklengyel%2Fdrakvuf/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/tklengyel","download_url":"https://codeload.github.com/tklengyel/drakvuf/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":254159544,"owners_count":22024562,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["introspection","malware-analysis","virtualization","xen"],"created_at":"2024-09-24T20:43:35.234Z","updated_at":"2025-05-14T14:08:08.085Z","avatar_url":"https://github.com/tklengyel.png","language":"C++","funding_links":[],"categories":["Online Scanners and Sandboxes"],"sub_categories":["Other Resources"],"readme":"# DRAKVUF\u0026copy;\n\n\n[![OpenSSF Best Practices](https://bestpractices.coreinfrastructure.org/projects/6836/badge)](https://bestpractices.coreinfrastructure.org/projects/6836)\n[![OpenSSF Scorecard](https://api.securityscorecards.dev/projects/github.com/tklengyel/drakvuf/badge)](https://api.securityscorecards.dev/projects/github.com/tklengyel/drakvuf)\n[![ci](https://github.com/tklengyel/drakvuf/actions/workflows/ci.yml/badge.svg)](https://github.com/tklengyel/drakvuf/actions/workflows/ci.yml)\n[![Coverity](https://scan.coverity.com/projects/3238/badge.svg)](https://scan.coverity.com/projects/tklengyel-drakvuf)\n\n## Introduction\n\nDRAKVUF is a virtualization based agentless black-box binary analysis system. DRAKVUF\nallows for in-depth execution tracing of arbitrary binaries (including operating\nsystems), all without having to install any special software within the virtual machine\nused for analysis.\n\n## Hardware requirements\n\nDRAKVUF uses hardware virtualization extensions found in Intel CPUs. You will need an\nIntel CPU with virtualization support (VT-x) and with Extended Page Tables (EPT). DRAKVUF\n is not going to work on any other CPUs (such as AMD) or on Intel CPUs without the\nrequired virtualization extensions.\n\n## Supported guests\n\nDRAKVUF currently supports:\n - Windows 7 - 8, both 32 and 64-bit\n - Windows 10 64-bit\n - Linux 2.6.x - 6.x, both 32-bit and 64-bit\n\n## Pre-built Debian packages\n\nYou can find pre-built Debian packages of the latest DRAKVUF builds at\nhttps://github.com/tklengyel/drakvuf-builds/releases\n \n## Malware analysis\n\nDRAKVUF provides a perfect platform for stealthy malware analysis as its footprint is\nnearly undectebable from the malware's perspective. While DRAKVUF has been mainly\ndeveloped with malware analysis in mind, it is certainly not limited to that task as it\ncan be used to monitor the execution of anything that executes within a VM, including\nfirmware, OS kernels and user-space processes.\n\n## Graphical frontend\n\nIf you would like a full-featured DRAKVUF GUI to setup as automated analysis sandbox, check out the\n[DRAKVUF Sandbox project](https://github.com/CERT-Polska/drakvuf-sandbox).\n\n## Installation steps\n\nInstallation steps can be found on the project website: [https://drakvuf.com](https://drakvuf.com)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftklengyel%2Fdrakvuf","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ftklengyel%2Fdrakvuf","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftklengyel%2Fdrakvuf/lists"}