vm.fail {low-level systems research}

About

Systems security research. Hypervisors, rootkits, cache manipulation, shellcode. ARM64 and x86_64. Occasionally firmware.

Projects

nebula

arm64 linux position-independent shellcode framework

kvmrsk

kvm rootkit for aarch64

icekit

cache-as-ram + amd x86_64 cache line locking

checkm8[archived]

bypassing intel txt tboot integrity checks

linebacker

preventing abuse of hardware cache lockdown on armv7a

silkhook[wip]

arm64 hooking library

IceVMM[wip]

minimal hypervisor for aarch64

Collaborators

wintermute

• arm64_silent_syscall_hook — silent syscall hooking via exception handler patching

• linux_syscall_hook[archived] — arm64 linux syscall hooking methods

• tlbkit — tlb manipulation toolkit

Contact

vmsplit@pm.me