Zelos
v0.0.0
Zelos
Tutorials
01 - Command Line Use
02 - Scripting with Zelos
03 - Using Hooks
04 - Creating Plugins
05 - Syscall Limiter Plugin
Script API
zelos.api package
Internal Package Docs
zelos package
Zelos
Docs
»
Index
Edit on GitHub
Index
A
|
B
|
C
|
D
|
E
|
F
|
G
|
H
|
I
|
K
|
L
|
M
|
N
|
O
|
P
|
R
|
S
|
T
|
U
|
V
|
W
|
X
|
Z
A
accept() (zelos.network.base_socket.BaseSocket method)
add_attempted_connection() (zelos.network.Network method)
(zelos.network.network.Network method)
add_custom_syscall() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
add_file() (zelos.file_system.PathTranslator method)
add_flags() (zelos.plugin.plugin.PluginCommands method)
(zelos.plugin.PluginCommands method)
add_handle() (zelos.handles.base_handles.Handles method)
(zelos.handles.Handles method)
add_hook() (zelos.hooks.Hooks method)
add_occurrence() (zelos.triggers.Trigger method)
AFTER (zelos.enums.HookType.SYSCALL attribute)
(zelos.HookType.SYSCALL attribute)
align() (in module zelos.util)
align_down() (in module zelos.util)
alloc() (zelos.memory.Heap method)
allocstr() (zelos.memory.Heap method)
Api (class in zelos.triggers)
api() (zelos.tracer.Tracer method)
api_dbg() (zelos.tracer.Tracer method)
Arg (class in zelos.plugin.arg_base)
arg_html_string() (zelos.triggers.Api method)
ArgFactory (class in zelos.plugin)
(class in zelos.plugin.arg_base)
Args (class in zelos.plugin.arg_base)
ArmCommentGenerator (class in zelos.tracer)
ArmEmuHelper (class in zelos.emulator.arm)
as_current_thread() (zelos.threads.Threads method)
B
BaseSelect (class in zelos.network.base_socket)
BaseSocket (class in zelos.network.base_socket)
bb() (zelos.tracer.Tracer method)
begin() (zelos.util.Timer method)
bind() (zelos.network.base_socket.BaseSocket method)
BLOCK (zelos.enums.HookType.EXEC attribute)
(zelos.HookType.EXEC attribute)
block_seen_before() (zelos.threads.Threads method)
blocks_executed() (zelos.processes.Process method)
bytes() (zelos.emulator.base.IEmuHelper property)
(zelos.state.State property)
C
category() (zelos.handles.base_handles.Handle method)
(zelos.handles.Handle method)
change_thread_priority() (zelos.threads.Threads method)
change_working_directory() (zelos.file_system.PathTranslator method)
cleanup() (zelos.threads.Thread method)
clear() (zelos.memory.Memory method)
clear_details() (zelos.triggers.Trigger method)
close() (zelos.api.Zelos method)
(zelos.api.zelos_api.Zelos method)
(zelos.Engine method)
(zelos.engine.Engine method)
(zelos.handles.base_handles.Handle method)
(zelos.handles.base_handles.Handles method)
(zelos.handles.base_handles.PipeInHandle method)
(zelos.handles.base_handles.PipeOutHandle method)
(zelos.handles.base_handles.SocketHandle method)
(zelos.handles.Handle method)
(zelos.handles.Handles method)
(zelos.handles.PipeInHandle method)
(zelos.handles.PipeOutHandle method)
(zelos.handles.SocketHandle method)
(zelos.network.base_socket.BaseSocket method)
(zelos.Zelos method)
close_all() (zelos.handles.base_handles.Handles method)
(zelos.handles.Handles method)
columnate() (in module zelos.util)
CommandLineOption (class in zelos)
(class in zelos.plugin)
(class in zelos.plugin.plugin)
Comment (class in zelos.tracer)
complete_current_thread() (zelos.threads.Threads method)
completed_threads() (zelos.threads.Threads property)
connect() (zelos.network.base_socket.BaseSocket method)
copy() (zelos.memory.Memory method)
copy_section() (zelos.memory.Memory method)
CREATE (zelos.enums.HookType.PROCESS attribute)
(zelos.enums.HookType.THREAD attribute)
(zelos.HookType.PROCESS attribute)
(zelos.HookType.THREAD attribute)
create_dns_response() (in module zelos.network.dns)
create_emulator() (in module zelos.emulator)
(in module zelos.emulator.base)
create_file() (zelos.file_system.FileSystem method)
create_file_mapping() (zelos.file_system.FileSystem method)
create_socket() (zelos.network.Network method)
(zelos.network.network.Network method)
create_thread() (zelos.threads.Threads method)
current_process() (zelos.Engine property)
(zelos.engine.Engine property)
current_thread() (zelos.Engine property)
(zelos.engine.Engine property)
(zelos.processes.Process property)
(zelos.processes.Processes property)
D
date() (zelos.api.Zelos property)
(zelos.api.zelos_api.Zelos property)
(zelos.Zelos property)
dealloc() (zelos.memory.Heap method)
del_hook() (zelos.hooks.Hooks method)
delete_hook() (zelos.api.Zelos method)
(zelos.api.zelos_api.Zelos method)
(zelos.hooks.HookManager method)
(zelos.Zelos method)
deserialize_process() (zelos.processes.Processes method)
DESTROY (zelos.enums.HookType.PROCESS attribute)
(zelos.enums.HookType.THREAD attribute)
(zelos.HookType.PROCESS attribute)
(zelos.HookType.THREAD attribute)
disable() (zelos.hooks.InterruptHooks method)
disable_whitelist() (zelos.network.Network method)
(zelos.network.network.Network method)
disas() (zelos.Engine method)
(zelos.engine.Engine method)
DnsSocketSimulator (class in zelos.network.base_socket)
dumpregs() (zelos.emulator.base.IEmuHelper method)
(zelos.threads.Thread method)
dumpstruct() (in module zelos.util)
(zelos.memory.Memory method)
E
EmptyCommentGenerator (class in zelos.tracer)
emu() (zelos.Engine property)
(zelos.engine.Engine property)
(zelos.manager.IManager property)
(zelos.plugin.Loader property)
(zelos.plugin.loader_base.Loader property)
(zelos.plugin.syscall_manager_base.SyscallManager property)
(zelos.plugin.SyscallManager property)
(zelos.threads.Thread property)
emulated_path_to_host_path() (zelos.file_system.PathTranslator method)
enable() (zelos.hooks.InterruptHooks method)
enable_whitelist() (zelos.network.Network method)
(zelos.network.network.Network method)
end_thread() (zelos.api.Zelos method)
(zelos.api.zelos_api.Zelos method)
(zelos.Zelos method)
Engine (class in zelos)
(class in zelos.engine)
entropy() (zelos.memory.Section method)
errno() (zelos.network.base_socket.BaseSocket property)
ExceptionHooks (class in zelos.hooks)
EXEC (zelos.enums.ProtType attribute)
(zelos.ProtType attribute)
executed_within_region() (zelos.threads.Threads method)
exists() (zelos.handles.base_handles.Handles method)
(zelos.handles.Handles method)
Export (class in zelos.plugin.parser_base)
F
fail_current_thread() (zelos.threads.Threads method)
failed_threads() (zelos.threads.Threads property)
FAILURE (zelos.threads.ThreadState attribute)
file_encrypt() (in module zelos.util)
FileHandle (class in zelos.handles)
(class in zelos.handles.base_handles)
FileSystem (class in zelos.file_system)
find_library() (zelos.file_system.FileSystem method)
find_syscall() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
find_syscall_name_by_number() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
fixme() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
flags_to_resolve (zelos.plugin.plugin.PluginCommands attribute)
(zelos.plugin.PluginCommands attribute)
found_domain() (in module zelos.util)
fp_reg (zelos.emulator.arm.ArmEmuHelper attribute)
(zelos.emulator.mips.MipsEmuHelper attribute)
(zelos.emulator.x86.x86_64EmuHelper attribute)
(zelos.emulator.x86.x86EmuHelper attribute)
functions_called() (zelos.tracer.Tracer property)
G
GDT_32 (class in zelos.emulator.x86_gdt)
gdt_entry_flags() (zelos.emulator.x86_gdt.GDT_32 static method)
gen_args() (zelos.plugin.arg_base.ArgFactory method)
(zelos.plugin.ArgFactory method)
gen_tid() (zelos.processes.Processes method)
generate_break_state() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
generate_config() (in module zelos.config_gen)
generate_config_from_cmdline() (in module zelos.config_gen)
get() (zelos.handles.base_handles.Handles method)
(zelos.handles.Handles method)
(zelos.plugin.plugin.Plugins method)
(zelos.plugin.Plugins method)
get_active_threads() (zelos.threads.Threads method)
get_all_reg_vals() (zelos.emulator.base.IEmuHelper method)
(zelos.threads.Thread method)
get_all_regs() (zelos.emulator.base.IEmuHelper method)
(zelos.threads.Thread method)
get_all_threads() (zelos.processes.Processes method)
(zelos.threads.Threads method)
get_base() (zelos.memory.Memory method)
get_by_name() (zelos.handles.base_handles.Handles method)
(zelos.handles.Handles method)
get_by_parent_thread() (zelos.handles.base_handles.Handles method)
(zelos.handles.Handles method)
get_by_type() (zelos.handles.base_handles.Handles method)
(zelos.handles.Handles method)
get_child_processes() (zelos.processes.Process method)
get_child_threads() (zelos.threads.Threads method)
get_comment() (zelos.tracer.ArmCommentGenerator method)
(zelos.tracer.EmptyCommentGenerator method)
(zelos.tracer.x86CommentGenerator method)
get_current_thread() (zelos.manager.IManager method)
get_data() (zelos.memory.Section method)
get_file_by_name() (zelos.file_system.FileSystem method)
get_file_mapping() (zelos.file_system.FileSystem method)
get_file_offset() (zelos.file_system.FileSystem method)
get_filename() (zelos.file_system.FileSystem method)
get_function_impl() (zelos.modules.Modules method)
get_function_name() (zelos.modules.Modules method)
get_initial_region() (zelos.memory.Memory method)
get_last_retval() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
get_last_syscall_args() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
get_module_base() (zelos.modules.Modules method)
get_module_name_at_address() (zelos.modules.Modules method)
get_pansi_string() (zelos.memory.Memory method)
get_pchar_array() (in module zelos.plugin.syscall_manager_base)
get_perms() (zelos.memory.Memory method)
get_process() (zelos.processes.Processes method)
get_punicode_string() (zelos.memory.Memory method)
get_reg() (zelos.emulator.base.IEmuHelper method)
(zelos.threads.Thread method)
get_region() (zelos.memory.Memory method)
get_region_hash() (zelos.memory.Memory method)
get_regs() (zelos.emulator.base.IEmuHelper method)
(zelos.threads.Thread method)
get_retval_register() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
get_sandbox_path() (zelos.file_system.PathTranslator method)
get_sections() (zelos.memory.Memory method)
get_size() (zelos.memory.Memory method)
get_strings() (zelos.memory.Section method)
get_syscall_number() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
get_thread() (zelos.processes.Process method)
(zelos.processes.Processes method)
(zelos.threads.Threads method)
get_thread_by_name() (zelos.threads.Threads method)
get_threads() (zelos.threads.Threads method)
getFP() (zelos.api.regs_api.RegsApi method)
(zelos.emulator.base.IEmuHelper method)
(zelos.threads.Thread method)
getIP() (zelos.api.regs_api.RegsApi method)
(zelos.emulator.base.IEmuHelper method)
(zelos.threads.Thread method)
getSP() (zelos.api.regs_api.RegsApi method)
(zelos.emulator.base.IEmuHelper method)
(zelos.threads.Thread method)
getstack() (zelos.api.regs_api.RegsApi method)
(zelos.emulator.base.IEmuHelper method)
(zelos.threads.Thread method)
H
Handle (class in zelos.handles)
(class in zelos.handles.base_handles)
handle_exception() (zelos.hooks.ExceptionHooks method)
handle_syscall() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
Handles (class in zelos.handles)
(class in zelos.handles.base_handles)
handles() (zelos.Engine property)
(zelos.engine.Engine property)
has() (zelos.plugin.plugin.Plugins method)
(zelos.plugin.Plugins method)
Heap (class in zelos.memory)
HEAP_BASE (zelos.memory.Memory attribute)
HEAP_MAX_SIZE (zelos.memory.Memory attribute)
helpers() (zelos.Engine property)
(zelos.engine.Engine property)
hexdump() (zelos.Engine method)
(zelos.engine.Engine method)
hook_close() (zelos.api.Zelos method)
(zelos.api.zelos_api.Zelos method)
(zelos.Zelos method)
hook_execution() (zelos.api.Zelos method)
(zelos.api.zelos_api.Zelos method)
(zelos.Zelos method)
hook_export() (zelos.symbol_manager.SymbolManager method)
hook_first_read() (zelos.memory.Memory method)
hook_mem_invalid() (zelos.hooks.Hooks method)
hook_memory() (zelos.api.Zelos method)
(zelos.api.zelos_api.Zelos method)
(zelos.Zelos method)
hook_syscalls() (zelos.api.Zelos method)
(zelos.api.zelos_api.Zelos method)
(zelos.Zelos method)
HookInfo (class in zelos.hooks)
HookManager (class in zelos.hooks)
Hooks (class in zelos.hooks)
hooks() (zelos.manager.IManager property)
HookType (class in zelos)
(class in zelos.enums)
HookType.EXEC (class in zelos)
(class in zelos.enums)
HookType.MEMORY (class in zelos)
(class in zelos.enums)
HookType.PROCESS (class in zelos)
(class in zelos.enums)
HookType.SYSCALL (class in zelos)
(class in zelos.enums)
HookType.THREAD (class in zelos)
(class in zelos.enums)
I
IEmuHelper (class in zelos.emulator.base)
IManager (class in zelos.manager)
imp_regs (zelos.emulator.arm.ArmEmuHelper attribute)
(zelos.emulator.mips.MipsEmuHelper attribute)
(zelos.emulator.x86.x86_64EmuHelper attribute)
(zelos.emulator.x86.x86EmuHelper attribute)
ImportEntry (class in zelos.plugin.parser_base)
Imports (class in zelos.plugin.parser_base)
in_mem_decrypt() (in module zelos.util)
indent() (zelos.tracer.Tracer method)
ins() (zelos.tracer.Tracer method)
INST (zelos.enums.HookType.EXEC attribute)
(zelos.HookType.EXEC attribute)
InterruptHooks (class in zelos.hooks)
INVALID (zelos.enums.HookType.MEMORY attribute)
(zelos.HookType.MEMORY attribute)
InvalidHookTypeException
,
[1]
InvalidRegException
,
[1]
InvalidTidException
ip_reg (zelos.emulator.arm.ArmEmuHelper attribute)
(zelos.emulator.mips.MipsEmuHelper attribute)
(zelos.emulator.x86.x86_64EmuHelper attribute)
(zelos.emulator.x86.x86EmuHelper attribute)
IPlugin (class in zelos)
(class in zelos.plugin)
(class in zelos.plugin.plugin)
is64() (zelos.state.State property)
is_absolute_path() (zelos.file_system.PathTranslator method)
is_active() (zelos.processes.Process property)
(zelos.threads.Thread property)
is_current_thread() (zelos.threads.Threads method)
is_empty() (zelos.handles.pipe.Pipe method)
is_loaded() (zelos.modules.Modules method)
is_nonblock() (zelos.network.base_socket.BaseSocket method)
is_readable() (zelos.network.base_socket.DnsSocketSimulator method)
(zelos.network.base_socket.RawSocketSimulator method)
is_timed_out() (zelos.util.Timer method)
is_whitelisted() (zelos.network.Network method)
(zelos.network.network.Network method)
ISubcommand (class in zelos)
(class in zelos.plugin)
(class in zelos.plugin.plugin)
K
KeyedEventHandle (class in zelos.handles)
(class in zelos.handles.base_handles)
kill_process() (zelos.processes.Processes method)
kill_thread() (zelos.threads.Threads method)
KILLED (zelos.threads.ThreadState attribute)
L
list_dir() (zelos.file_system.FileSystem method)
listen() (zelos.network.base_socket.BaseSocket method)
load() (in module zelos.plugin.plugin)
(zelos.plugin.Loader method)
(zelos.plugin.loader_base.Loader method)
(zelos.plugin.OSPlugin method)
(zelos.plugin.OSPlugins method)
(zelos.plugin.plugin.OSPlugin method)
(zelos.plugin.plugin.OSPlugins method)
load_context() (zelos.threads.Thread method)
load_executable() (zelos.Engine method)
(zelos.engine.Engine method)
load_library() (zelos.Engine method)
(zelos.engine.Engine method)
load_next_process() (zelos.processes.Processes method)
load_process() (zelos.processes.Processes method)
loaded_plugins (zelos.plugin.plugin.Plugins attribute)
(zelos.plugin.Plugins attribute)
Loader (class in zelos.plugin)
(class in zelos.plugin.loader_base)
loader() (zelos.Engine property)
(zelos.engine.Engine property)
log_api() (zelos.Engine method)
(zelos.engine.Engine method)
log_api_dbg() (zelos.Engine method)
(zelos.engine.Engine method)
M
map() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
map_anywhere() (zelos.memory.Memory method)
MAX_UINT64 (zelos.memory.Memory attribute)
Memory (class in zelos.memory)
memory() (zelos.Engine property)
(zelos.engine.Engine property)
(zelos.manager.IManager property)
(zelos.plugin.Loader property)
(zelos.plugin.loader_base.Loader property)
(zelos.threads.Thread property)
MemoryApi (class in zelos.api.memory_api)
MipsEmuHelper (class in zelos.emulator.mips)
Modules (class in zelos.modules)
modules() (zelos.Engine property)
(zelos.engine.Engine property)
mount_folder() (zelos.file_system.PathTranslator method)
N
Network (class in zelos.network)
(class in zelos.network.network)
new() (zelos.handles.base_handles.Handles method)
(zelos.handles.Handles method)
new_file() (zelos.handles.base_handles.Handles method)
(zelos.handles.Handles method)
new_pipe() (zelos.handles.base_handles.Handles method)
(zelos.handles.Handles method)
new_process() (zelos.handles.base_handles.Handles method)
(zelos.handles.Handles method)
(zelos.processes.Processes method)
new_regkey() (zelos.handles.base_handles.Handles method)
(zelos.handles.Handles method)
new_socket() (zelos.handles.base_handles.Handles method)
(zelos.handles.Handles method)
new_thread() (zelos.handles.base_handles.Handles method)
(zelos.handles.Handles method)
(zelos.processes.Process method)
(zelos.threads.Threads method)
new_thread_for_current_process() (zelos.processes.Processes method)
NONE (zelos.enums.ProtType attribute)
(zelos.ProtType attribute)
NORMAL (zelos.triggers.RuleType attribute)
nullsub() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
num_active_processes() (zelos.processes.Processes method)
num_active_threads() (zelos.threads.Threads method)
num_unique_blocks() (zelos.threads.Threads method)
O
ObjectHandle (class in zelos.handles)
(class in zelos.handles.base_handles)
open_library() (zelos.file_system.FileSystem method)
OSPlugin (class in zelos.plugin)
(class in zelos.plugin.plugin)
OSPlugins (class in zelos.plugin)
(class in zelos.plugin.plugin)
OutOfMemoryException
,
[1]
P
p16() (in module zelos.util)
p32() (in module zelos.util)
p64() (in module zelos.util)
p8() (in module zelos.util)
pack() (zelos.api.memory_api.MemoryApi method)
(zelos.emulator.base.IEmuHelper method)
(zelos.memory.Memory method)
(zelos.threads.Thread method)
parse() (zelos.plugin.OSPlugin method)
(zelos.plugin.OSPlugins method)
(zelos.plugin.Parser method)
(zelos.plugin.parser_base.Parser method)
(zelos.plugin.plugin.OSPlugin method)
(zelos.plugin.plugin.OSPlugins method)
parse_dns_request() (in module zelos.network.dns)
parse_dns_response() (in module zelos.network.dns)
parse_file() (zelos.Engine method)
(zelos.engine.Engine method)
Parser (class in zelos.plugin)
(class in zelos.plugin.parser_base)
PathTranslator (class in zelos.file_system)
pause_current_thread() (zelos.threads.Threads method)
pause_syscall() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
PAUSED (zelos.threads.ThreadState attribute)
peek() (zelos.network.base_socket.BaseSocket method)
Pipe (class in zelos.handles.pipe)
PipeInHandle (class in zelos.handles)
(class in zelos.handles.base_handles)
PipeOutHandle (class in zelos.handles)
(class in zelos.handles.base_handles)
PluginCommands (class in zelos.plugin)
(class in zelos.plugin.plugin)
Plugins (class in zelos.plugin)
(class in zelos.plugin.plugin)
poll() (zelos.network.base_socket.BaseSelect method)
POLLERR (zelos.network.base_socket.BaseSelect attribute)
POLLHUP (zelos.network.base_socket.BaseSelect attribute)
POLLIN (zelos.network.base_socket.BaseSelect attribute)
POLLMSG (zelos.network.base_socket.BaseSelect attribute)
POLLNVAL (zelos.network.base_socket.BaseSelect attribute)
POLLOUT (zelos.network.base_socket.BaseSelect attribute)
POLLPRI (zelos.network.base_socket.BaseSelect attribute)
POLLRDBAND (zelos.network.base_socket.BaseSelect attribute)
POLLRDHUP (zelos.network.base_socket.BaseSelect attribute)
POLLRDNORM (zelos.network.base_socket.BaseSelect attribute)
POLLREMOVE (zelos.network.base_socket.BaseSelect attribute)
POLLWRBAND (zelos.network.base_socket.BaseSelect attribute)
POLLWRNORM (zelos.network.base_socket.BaseSelect attribute)
popstack() (zelos.api.regs_api.RegsApi method)
(zelos.emulator.base.IEmuHelper method)
(zelos.threads.Thread method)
print() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
(zelos.tracer.Tracer method)
print_active_hooks() (zelos.hooks.Hooks method)
print_info() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
print_stack() (zelos.threads.Thread method)
print_syscall() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
priority() (zelos.processes.Process method)
Process (class in zelos.processes)
process() (zelos.api.Zelos property)
(zelos.api.zelos_api.Zelos property)
(zelos.Zelos property)
Processes (class in zelos.processes)
ProcessHandle (class in zelos.handles)
(class in zelos.handles.base_handles)
PROT (zelos.enums.HookType.MEMORY attribute)
(zelos.HookType.MEMORY attribute)
protect() (zelos.memory.Memory method)
ProtType (class in zelos)
(class in zelos.enums)
ptr2struct() (in module zelos.plugin.syscall_manager_base)
pushstack() (zelos.api.regs_api.RegsApi method)
(zelos.emulator.base.IEmuHelper method)
(zelos.threads.Thread method)
R
RawSocketSimulator (class in zelos.network.base_socket)
READ (zelos.enums.HookType.MEMORY attribute)
(zelos.enums.ProtType attribute)
(zelos.HookType.MEMORY attribute)
(zelos.ProtType attribute)
read() (zelos.api.memory_api.MemoryApi method)
(zelos.handles.base_handles.PipeOutHandle method)
(zelos.handles.pipe.Pipe method)
(zelos.handles.PipeOutHandle method)
(zelos.memory.Memory method)
READ_AFTER (zelos.enums.HookType.MEMORY attribute)
(zelos.HookType.MEMORY attribute)
read_int() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
read_int16() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
read_int32() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
read_int64() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
read_int8() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
READ_INVALID (zelos.enums.HookType.MEMORY attribute)
(zelos.HookType.MEMORY attribute)
read_pansi_string() (zelos.api.memory_api.MemoryApi method)
READ_PROT (zelos.enums.HookType.MEMORY attribute)
(zelos.HookType.MEMORY attribute)
read_ptr() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
read_punicode_string() (zelos.api.memory_api.MemoryApi method)
read_size_t() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
read_string() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
read_uint16() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
read_uint32() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
read_uint64() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
read_uint8() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
READ_UNMAPPED (zelos.enums.HookType.MEMORY attribute)
(zelos.HookType.MEMORY attribute)
read_wstring() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
readstruct() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
readstructarray() (zelos.memory.Memory method)
record_block() (zelos.threads.Threads method)
record_initial_memory_state() (zelos.memory.Memory method)
recv() (zelos.network.base_socket.BaseSocket method)
(zelos.network.base_socket.DnsSocketSimulator method)
(zelos.network.base_socket.RawSocketSimulator method)
recvfrom() (zelos.network.base_socket.BaseSocket method)
(zelos.network.base_socket.DnsSocketSimulator method)
(zelos.network.base_socket.RawSocketSimulator method)
register_close_hook() (zelos.hooks.HookManager method)
register_exception_handler() (zelos.hooks.ExceptionHooks method)
register_exception_hook() (zelos.hooks.HookManager method)
register_exec_hook() (zelos.hooks.HookManager method)
register_generic_interrupt_handler() (zelos.hooks.InterruptHooks method)
register_inst_type_hook() (zelos.hooks.HookManager method)
register_interrupt_handler() (zelos.hooks.InterruptHooks method)
register_interrupt_hook() (zelos.hooks.HookManager method)
register_mem_hook() (zelos.hooks.HookManager method)
register_overrides() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
register_plugin() (zelos.plugin.plugin.Plugins method)
(zelos.plugin.Plugins method)
register_process_hook() (zelos.hooks.HookManager method)
register_syscall_hook() (zelos.hooks.HookManager method)
register_thread_hook() (zelos.hooks.HookManager method)
register_unhandled_interrupt_handler() (zelos.hooks.InterruptHooks method)
registered_flags (zelos.plugin.plugin.PluginCommands attribute)
(zelos.plugin.PluginCommands attribute)
RegistryKeyHandle (class in zelos.handles)
(class in zelos.handles.base_handles)
regmap (zelos.emulator.arm.ArmEmuHelper attribute)
(zelos.emulator.mips.MipsEmuHelper attribute)
(zelos.emulator.x86.x86_64EmuHelper attribute)
(zelos.emulator.x86.x86EmuHelper attribute)
regmap() (zelos.emulator.base.IEmuHelper property)
regs() (zelos.tracer.Tracer method)
regs_to_save (zelos.threads.Threads attribute)
RegsApi (class in zelos.api.regs_api)
remove_breakpoint() (zelos.api.Zelos method)
(zelos.api.zelos_api.Zelos method)
(zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
(zelos.Zelos method)
remove_syscall_breakpoint() (zelos.api.Zelos method)
(zelos.api.zelos_api.Zelos method)
(zelos.Zelos method)
remove_watchpoint() (zelos.api.Zelos method)
(zelos.api.zelos_api.Zelos method)
(zelos.Zelos method)
return_addr() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
RuleType (class in zelos.triggers)
RUNNING (zelos.threads.ThreadState attribute)
RW (zelos.enums.ProtType attribute)
(zelos.ProtType attribute)
RWX (zelos.enums.ProtType attribute)
(zelos.ProtType attribute)
RX (zelos.enums.ProtType attribute)
(zelos.ProtType attribute)
S
save_context() (zelos.threads.Thread method)
schedule_next() (zelos.processes.Processes method)
Scheduler (class in zelos.scheduler)
scheduler() (zelos.Engine property)
(zelos.engine.Engine property)
(zelos.manager.IManager property)
(zelos.processes.Process property)
Section (class in zelos.memory)
(class in zelos.plugin)
(class in zelos.plugin.parser_base)
SectionHandle (class in zelos.handles)
(class in zelos.handles.base_handles)
seek() (zelos.handles.base_handles.FileHandle method)
(zelos.handles.FileHandle method)
select() (zelos.network.base_socket.BaseSelect method)
send() (zelos.network.base_socket.BaseSocket method)
(zelos.network.base_socket.DnsSocketSimulator method)
(zelos.network.base_socket.RawSocketSimulator method)
sendto() (zelos.network.base_socket.BaseSocket method)
(zelos.network.base_socket.DnsSocketSimulator method)
(zelos.network.base_socket.RawSocketSimulator method)
serialize_process() (zelos.processes.Processes method)
set_architecture() (zelos.processes.Processes method)
set_breakpoint() (zelos.api.Zelos method)
(zelos.api.zelos_api.Zelos method)
(zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
(zelos.Zelos method)
set_current_api_module() (zelos.tracer.Tracer method)
set_current_function_name() (zelos.tracer.Tracer method)
set_current_return_address() (zelos.tracer.Tracer method)
set_entry() (zelos.emulator.x86_gdt.GDT_32 method)
set_file_offset() (zelos.file_system.FileSystem method)
set_hook_granularity() (zelos.Engine method)
(zelos.engine.Engine method)
set_log_level() (zelos.Engine method)
(zelos.engine.Engine method)
set_mem_limit() (zelos.Engine method)
(zelos.engine.Engine method)
set_nonblock() (zelos.network.base_socket.BaseSocket method)
set_reg() (zelos.emulator.base.IEmuHelper method)
(zelos.threads.Thread method)
set_return_value() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
set_select_class() (zelos.network.Network method)
(zelos.network.network.Network method)
set_socket_class() (zelos.network.Network method)
(zelos.network.network.Network method)
set_strace_file() (zelos.plugin.syscall_manager_base.SyscallManager method)
(zelos.plugin.SyscallManager method)
set_syscall_breakpoint() (zelos.api.Zelos method)
(zelos.api.zelos_api.Zelos method)
(zelos.Zelos method)
set_trace_on() (zelos.Engine method)
(zelos.engine.Engine method)
set_verbose() (zelos.Engine method)
(zelos.engine.Engine method)
set_watchpoint() (zelos.api.Zelos method)
(zelos.api.zelos_api.Zelos method)
(zelos.Zelos method)
set_writetrace() (zelos.Engine method)
(zelos.engine.Engine method)
setFP() (zelos.api.regs_api.RegsApi method)
(zelos.emulator.base.IEmuHelper method)
(zelos.threads.Thread method)
setIP() (zelos.api.regs_api.RegsApi method)
(zelos.emulator.base.IEmuHelper method)
(zelos.threads.Thread method)
setsockopt() (zelos.network.base_socket.BaseSocket method)
setSP() (zelos.api.regs_api.RegsApi method)
(zelos.emulator.base.IEmuHelper method)
(zelos.threads.Thread method)
setstack() (zelos.api.regs_api.RegsApi method)
(zelos.emulator.base.IEmuHelper method)
(zelos.threads.Thread method)
setup() (zelos.file_system.FileSystem method)
setup_permanent_export_hook() (zelos.symbol_manager.SymbolManager method)
should_auto_simulate() (zelos.symbol_manager.SymbolManager method)
should_print_thread() (zelos.tracer.Tracer method)
should_setup_permanent_export_hook() (zelos.symbol_manager.SymbolManager method)
SocketHandle (class in zelos.handles)
(class in zelos.handles.base_handles)
sockets() (zelos.network.Network property)
(zelos.network.network.Network property)
sp_reg (zelos.emulator.arm.ArmEmuHelper attribute)
(zelos.emulator.mips.MipsEmuHelper attribute)
(zelos.emulator.x86.x86_64EmuHelper attribute)
(zelos.emulator.x86.x86EmuHelper attribute)
STACK_BASE (zelos.plugin.Loader attribute)
(zelos.plugin.loader_base.Loader attribute)
STACK_SIZE (zelos.Engine attribute)
(zelos.engine.Engine attribute)
start() (zelos.api.Zelos method)
(zelos.api.zelos_api.Zelos method)
(zelos.Engine method)
(zelos.engine.Engine method)
(zelos.Zelos method)
State (class in zelos.state)
StdErr (class in zelos.handles)
(class in zelos.handles.base_handles)
StdIn (class in zelos.handles)
(class in zelos.handles.base_handles)
StdOut (class in zelos.handles)
(class in zelos.handles.base_handles)
step() (zelos.api.Zelos method)
(zelos.api.zelos_api.Zelos method)
(zelos.Engine method)
(zelos.engine.Engine method)
(zelos.Zelos method)
step_over() (zelos.Engine method)
(zelos.engine.Engine method)
stop() (zelos.api.Zelos method)
(zelos.api.zelos_api.Zelos method)
(zelos.scheduler.Scheduler method)
(zelos.Zelos method)
stop_and_exec() (zelos.scheduler.Scheduler method)
str2struct() (in module zelos.plugin.syscall_manager_base)
(in module zelos.util)
string() (zelos.plugin.Parser method)
(zelos.plugin.parser_base.Export method)
(zelos.plugin.parser_base.ImportEntry method)
(zelos.plugin.parser_base.Imports method)
(zelos.plugin.parser_base.Parser method)
(zelos.plugin.parser_base.Section method)
(zelos.plugin.Section method)
struct2str() (in module zelos.util)
SUCCESS (zelos.threads.ThreadState attribute)
SWAP (zelos.enums.HookType.PROCESS attribute)
(zelos.enums.HookType.THREAD attribute)
(zelos.HookType.PROCESS attribute)
(zelos.HookType.THREAD attribute)
swap_thread() (zelos.api.Zelos method)
(zelos.api.zelos_api.Zelos method)
(zelos.Zelos method)
swap_with_next_thread() (zelos.processes.Processes method)
(zelos.threads.Threads method)
swap_with_thread() (zelos.threads.Threads method)
Symbol (class in zelos.plugin.parser_base)
SymbolicLinkObjectHandle (class in zelos.handles)
(class in zelos.handles.base_handles)
SymbolManager (class in zelos.symbol_manager)
Syscall (class in zelos.triggers)
SyscallManager (class in zelos.plugin)
(class in zelos.plugin.syscall_manager_base)
T
TABLE (zelos.triggers.RuleType attribute)
TableTrigger (class in zelos.triggers)
Thread (class in zelos.threads)
thread() (zelos.api.Zelos property)
(zelos.api.zelos_api.Zelos property)
(zelos.Zelos property)
thread_manager() (zelos.Engine property)
(zelos.engine.Engine property)
(zelos.processes.Processes property)
ThreadException
ThreadHandle (class in zelos.handles)
(class in zelos.handles.base_handles)
Threads (class in zelos.threads)
ThreadState (class in zelos.threads)
Timer (class in zelos.util)
to_dict_list() (zelos.plugin.arg_base.Args method)
to_signed() (zelos.emulator.base.IEmuHelper method)
tr_api() (zelos.triggers.Triggers method)
tr_call_crypto_func() (zelos.triggers.Triggers method)
tr_call_syscall() (zelos.triggers.Triggers method)
tr_contacts_domain() (zelos.triggers.Triggers method)
tr_contacts_malicious_domain() (zelos.triggers.Triggers method)
tr_contacts_many_domains() (zelos.triggers.Triggers method)
tr_create_process() (zelos.triggers.Triggers method)
tr_create_thread() (zelos.triggers.Triggers method)
tr_file_check() (zelos.triggers.Triggers method)
tr_file_open() (zelos.triggers.Triggers method)
tr_file_read() (zelos.triggers.Triggers method)
tr_file_write() (zelos.triggers.Triggers method)
tr_gets_processes() (zelos.triggers.Triggers method)
tr_load_library() (zelos.triggers.Triggers method)
tr_mutex_create() (zelos.triggers.Triggers method)
tr_mutex_open() (zelos.triggers.Triggers method)
tr_process_injection() (zelos.triggers.Triggers method)
tr_process_write() (zelos.triggers.Triggers method)
tr_rdtsc() (zelos.triggers.Triggers method)
tr_reached_entrypoint() (zelos.triggers.Triggers method)
tr_read_peb() (zelos.triggers.Triggers method)
tr_read_peb_ldr() (zelos.triggers.Triggers method)
tr_registry_create_key() (zelos.triggers.Triggers method)
tr_registry_key_open() (zelos.triggers.Triggers method)
tr_registry_key_read() (zelos.triggers.Triggers method)
tr_registry_key_value_read() (zelos.triggers.Triggers method)
tr_registry_key_value_write() (zelos.triggers.Triggers method)
tr_rpc() (zelos.triggers.Triggers method)
tr_sleep() (zelos.triggers.Triggers method)
tr_syscall() (zelos.triggers.Triggers method)
tr_unpacked_code_execution() (zelos.triggers.Triggers method)
Tracer (class in zelos.tracer)
Trigger (class in zelos.triggers)
trigger() (zelos.triggers.Triggers method)
Triggers (class in zelos.triggers)
U
u16() (in module zelos.util)
u32() (in module zelos.util)
u64() (in module zelos.util)
u8() (in module zelos.util)
unindent() (zelos.tracer.Tracer method)
UNKNOWN (zelos.threads.ThreadState attribute)
unmap() (zelos.memory.Memory method)
UNMAPPED (zelos.enums.HookType.MEMORY attribute)
(zelos.HookType.MEMORY attribute)
unpack() (zelos.api.memory_api.MemoryApi method)
(zelos.emulator.base.IEmuHelper method)
(zelos.memory.Memory method)
(zelos.threads.Thread method)
unregistered_os_plugins (zelos.plugin.OSPlugins attribute)
(zelos.plugin.plugin.OSPlugins attribute)
unsafe_open() (zelos.file_system.FileSystem method)
UnsupportedBinaryError
,
[1]
update_trigger() (zelos.triggers.Triggers method)
V
VALID (zelos.enums.HookType.MEMORY attribute)
(zelos.HookType.MEMORY attribute)
VALLOC_BASE (zelos.memory.Memory attribute)
W
WorkerFactoryHandle (class in zelos.handles)
(class in zelos.handles.base_handles)
WRITE (zelos.enums.HookType.MEMORY attribute)
(zelos.enums.ProtType attribute)
(zelos.HookType.MEMORY attribute)
(zelos.ProtType attribute)
write() (zelos.api.memory_api.MemoryApi method)
(zelos.handles.base_handles.PipeInHandle method)
(zelos.handles.base_handles.StdErr method)
(zelos.handles.base_handles.StdOut method)
(zelos.handles.pipe.Pipe method)
(zelos.handles.PipeInHandle method)
(zelos.handles.StdErr method)
(zelos.handles.StdOut method)
(zelos.memory.Memory method)
write_int() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
write_int16() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
write_int32() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
write_int64() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
write_int8() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
WRITE_INVALID (zelos.enums.HookType.MEMORY attribute)
(zelos.HookType.MEMORY attribute)
WRITE_PROT (zelos.enums.HookType.MEMORY attribute)
(zelos.HookType.MEMORY attribute)
write_ptr() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
write_size_t() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
write_string() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
write_to_sandbox() (zelos.file_system.FileSystem method)
write_uint16() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
write_uint32() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
write_uint64() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
write_uint8() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
WRITE_UNMAPPED (zelos.enums.HookType.MEMORY attribute)
(zelos.HookType.MEMORY attribute)
write_wstring() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
writestruct() (zelos.api.memory_api.MemoryApi method)
(zelos.memory.Memory method)
X
x86_64EmuHelper (class in zelos.emulator.x86)
x86CommentGenerator (class in zelos.tracer)
x86EmuHelper (class in zelos.emulator.x86)
Z
Zelos (class in zelos)
(class in zelos.api)
(class in zelos.api.zelos_api)
zelos (module)
zelos.api (module)
zelos.api.memory_api (module)
zelos.api.regs_api (module)
zelos.api.zelos_api (module)
zelos.config_gen (module)
zelos.emulator (module)
zelos.emulator.arm (module)
zelos.emulator.base (module)
zelos.emulator.mips (module)
zelos.emulator.x86 (module)
zelos.emulator.x86_gdt (module)
zelos.engine (module)
zelos.enums (module)
zelos.exceptions (module)
zelos.file_system (module)
zelos.handles (module)
zelos.handles.base_handles (module)
zelos.handles.pipe (module)
zelos.hooks (module)
zelos.manager (module)
zelos.memory (module)
zelos.modules (module)
zelos.network (module)
zelos.network.base_socket (module)
zelos.network.dns (module)
zelos.network.network (module)
zelos.plugin (module)
zelos.plugin.arg_base (module)
zelos.plugin.loader_base (module)
zelos.plugin.parser_base (module)
zelos.plugin.plugin (module)
zelos.plugin.syscall_manager_base (module)
zelos.processes (module)
zelos.scheduler (module)
zelos.state (module)
zelos.symbol_manager (module)
zelos.threads (module)
zelos.tracer (module)
zelos.triggers (module)
zelos.util (module)
ZelosCmdline (class in zelos.api.zelos_api)
ZelosException
,
[1]
ZelosLoadException
,
[1]
ZelosRuntimeException
,
[1]
Read the Docs
v: v0.0.0
Versions
latest
stable
v0.0.0
Downloads
On Read the Docs
Project Home
Builds
Free document hosting provided by
Read the Docs
.