xiaocaip

xiaocaip / aperture

Public

Arm64 linux KVM introspection hypervisor via stage 2 translation traps & vcpu exit tracing

aarch64 arm64 el2 hypervisor kvm
10
0
100% credibility
Found May 05, 2026 at 10 stars -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
C
AI Summary

Aperture is a tool for executing small AArch64 programs in a KVM-based virtual machine while trapping and logging specific memory accesses as JSON events.

How It Works

1
🔍 Discover Aperture

You hear about a handy tool that lets you run and closely watch tiny programs on ARM computers, perfect for figuring out exactly what they do with memory.

2
📦 Get the tool ready

You download and prepare the simple program on your ARM computer so it's all set to use.

3
💻 Prepare your mini program

You create or pick a small program to test and decide which memory spots to keep an eye on, like secret areas you want to spy on.

4
🔧 Check your setup

You review your program and watch points to make sure everything lines up perfectly without issues.

5
🚀 Start the virtual run

With one command, you launch your program in a safe virtual space, and it starts running while you capture every key moment.

6
📊 Watch the action unfold

You see a stream of notes about every memory peek or poke your program makes, labeled clearly so you understand the story.

🎉 Get your insights and snapshot

Your run finishes smoothly, you save the final memory picture, and now you fully understand your program's behavior.

Sign up to see the full architecture

5 more

Sign Up Free

Star Growth

See how this repo grew from 10 to 10 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is aperture?

Aperture is a C-based hypervisor for Arm64 Linux KVM that runs baremetal payloads—flat binaries or ELF64 AArch64 code—in a lightweight vCPU guest while trapping specific memory pages via stage 2 translation. It logs every trapped access and vCPU exit as structured JSONL, with options to shadow, zero-fill, deny, or readonly-handle regions, plus UART emulation and final RAM dumps. Unlike full emulators, it solves low-overhead introspection for debugging Arm64 guests on arm64 linux distros or chrome setups.

Why is it gaining traction?

It hooks developers with dead-simple CLI commands like `aperture run --payload payload.bin --trap GPA:SIZE:PERMS --trace exits.jsonl`, instant config validation, and optional register snapshots in traces—perfect for arm64 github actions runners without custom kernel hacks. Stands out from generic KVM tools by focusing on trap-based tracing over broad virtualization, weaving in arm64 github runner efficiency amid searches for aperture camera github or aperture finance github noise.

Who should use this?

KVM tinkerers building arm64 linux desktop environments, security researchers probing guest memory like aperture science experiments, or firmware devs tracing payloads on arm64 hardware. Ideal for those evaluating arm64 linux distros or needing quick vCPU exit logs without QEMU overhead.

Verdict

Experimental with just 10 stars and 1.0% credibility score, but solid README, build instructions, and validation make it usable for niche Arm64 KVM work—try it if you need trap introspection now, watch for maturity as adoption grows.

(178 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.