vmprofiler-qt/README.md

# vmprofiler-qt - VMProtect 2 QT Virtual Instruction Trace Inspector

vmprofiler-qt is a GUI program designed to view trace files generated by vmtracer programs. Currently um-tracer is the only program that will generate a trace file, however in the near future another repo will be added using unicorn to generate traces. 

A trace is simply a file that contains all native register values, virtual stack values, virtual register values, for every single executed virtual instruction. This allows for very indepth analysis of the executed virtual instructions. Without this level of information it is very difficult to make sense of virtual instructions and the effects on the virtual stack.

# Usage Requirements

In order to use vmprofiler-qt a few requirements must be met. When using the GUI make sure to have the following information ready:

* `vm_entry rva` - the relative virtual address, from the base of the module, of `vm_entry`.
* `image base rva` - the `ImageBase` value located inside of the optional PE header.
* `.vmp2 file` - a trace file generated by vmtracer project such as `um-tracer`. 
* an unpacked VMProtect'ed binary which you know all of the above about (use vmprofiler-cli to locate the values you dont know).
Update README.md 3 years ago			`# vmprofiler-qt - VMProtect 2 QT Virtual Instruction Trace Inspector`
Initial commit 3 years ago
Update README.md 3 years ago			`vmprofiler-qt is a GUI program designed to view trace files generated by vmtracer programs. Currently um-tracer is the only program that will generate a trace file, however in the near future another repo will be added using unicorn to generate traces.`

Update README.md 3 years ago			`A trace is simply a file that contains all native register values, virtual stack values, virtual register values, for every single executed virtual instruction. This allows for very indepth analysis of the executed virtual instructions. Without this level of information it is very difficult to make sense of virtual instructions and the effects on the virtual stack.`

Update README.md 3 years ago			`# Usage Requirements`

			`In order to use vmprofiler-qt a few requirements must be met. When using the GUI make sure to have the following information ready:`

Update README.md 3 years ago			* `vm_entry rva` - the relative virtual address, from the base of the module, of `vm_entry`.
			* `image base rva` - the `ImageBase` value located inside of the optional PE header.
			* `.vmp2 file` - a trace file generated by vmtracer project such as `um-tracer`.
			`* an unpacked VMProtect'ed binary which you know all of the above about (use vmprofiler-cli to locate the values you dont know).`