Check out the plugin documentation for more information. PANDA supports callbacks for many types of event within QEMU, making it easy to write an analysis plugin for example, a simple system call tracer is ~60 lines of code. Plugin Architecture: Plugins can be written in C and C++.See the Android documentation for more details. Android Support: Thanks to excellent work by Josh Hodosh, PANDA can act as an Android emulator, running modern versions of Android.For more details see the record and replay documentation. Record and replay is currently supported for i386, x86_64, and ARM, with more architectures planned. We recently used this in our 2013 ACM CCS paper to monitor every memory access made by an OS and applications, which would not have been feasible without record and replay. This means that heavyweight analyses that would be too slow to run on a live execution can be decoupled to run on the replayed execution instead. Record and Replay: PANDA is capable of recording the non-deterministic inputs during a whole-system execution and later deterministically replaying them.It has a number of features that combine to make it a uniquely powerful platform for analyzing software as it executes: I'm pleased to announce the initial release of a new open source dynamic analysis platform built on QEMU, named PANDA (Platform for Architecture-Neutral Dynamic Analysis).
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |