Malware is evolving at an alarming rate, and today's debugging, reverse engineering and forensics tools aren't keeping up. Until now...
Operating System and Hypervisor Developers
EDR and Malware Detection and Analysis
Windows Internals Researchers
Hypervisor and operating system interactions with the silicon present the most complex and challenging technical bugs in the world. With the SourcePoint WinDbg JTAG-enabled debugger, you identify and resolve root cause faster, accelerate your time to market, and enhance engineering productivity.
Malware complexity is increasing exponentially, and traditional detection and mitigation methods are struggling to keep up. Use the most advanced combination of static and dynamic analysis to root-cause malicious threats and rogue code.
Are you interested in Windows internals, but frustrated with the limitations of existing debuggers? Do you find it challenging to understand how advanced features such as Hyper-V, the Secure Kernel, VBS Enclaves and other technologies function? Use the SourcePoint debugger to gain insight from code to silicon.
Industry Feedback
Did you miss our December 12th webinar?
Debug of Hyper-V, Secure Kernel, VBS Enclaves, Defender, and other secrets
We demonstrated how to probe for and mitigate vulnerabilities in Hyper-V and VBS; see how malware and bare metal rogue code can take over a machine; and complement static analysis with some unique dynamic analysis at the lowest level of Windows. View the recording here.
How does SourcePoint WinDbg debug the undebuggable?
Now, for the first time ever, the power of the SourcePoint JTAG hardware-assisted debugger is combined with the Microsoft Windows OS-aware functionality of WinDbg. Kernel and user code can be debugged within the combined environment with power and usability that has never been achieved before. Combine the low-level unique capabilities of JTAG: SMM breakpoint support, Intel Processor Trace, Architectural Event Trace (AET), and many other very powerful features; with the de facto Windows debugger from Microsoft.
But it gets better. With the built-in hypervisor debug support within SourcePoint, you can debug Hyper-V, Secure Kernel, Virtualization-Based Security (VBS), and all Type-1 and Type-2 VMM features to an extent never possible before. Set breakpoints for VM Launch, VM Resume and VM Exit; explore Guest <-> Host mode transitions with dynamic instruction and event trace; and view the Host and Guest VMCS, reading and writing to any possible fields therein.
Commercial Off-The-Shelf targets that support Intel Direct Connect Interface (DCI) allow JTAG debug of low-cost Intel boards with only a custom USB cable; not requiring an expensive external JTAG hardware probe. The flagship target is the AAEON UP Xtreme i11 Tiger Lake board, that can be purchased from the AAEON UP Shop or from ASSET directly. Also supported are the AAEON UP Xtreme i12 (Alder Lake) and UP Xtreme i14 (Meteor Lake) targets, which can be purchased directly from the UP Shop.
For a list of the unique features that only JTAG can provide, read our article here: Seven groundbreaking new features for Windows kernel debug.ย
Built-in Hypervisor Support
Use our VM Launch, VM Resume, VM Exit breakpoints, visual VMCS display/editor, and other hypervisor debug features to probe for and mitigate vulnerabilities in Hyper-V and Virtualization-Based Security (VBS).
Windows OS-Aware Functionality
Combine the functionality of SourcePoint and WinDbg to debug the undebuggable: trap handlers, machine checks, the Secure Kernel, VBS Enclaves, etc. See how malware and bare metal rogue code can take over the machine.
Powerful Trace Features
Leverage the JTAG-only power of Intel Processor Trace and Architectural Event Trace to do dynamic analysis of code and event flow. Overcome the limitations of static analysis and see what Windows is really doing under the hood.
Buy SourcePoint Home
For Individual Researchers and Hobbyists
SourcePoint Home Starter Kit
$1,415
Getting started price! $895 annual subscription + $500 AAEON UP Xtreme i11 board/256GB SSD/16GB RAM/power adapter + $20 DCI cable.
This Starter Kit has what you need to get started with the most powerful Intel x86/Windows debugger on the planet.
SourcePoint Home License
$895
An annual subscription, SourcePoint Home is dedicated to non-commercial use only.
If you intend to use it for commercial purposes (in other words, to earn money), contact an ASSET sales representative.
Intel DCI Debug Cable 1.8 meter
$20
This Intel specialty cable is dedicated to debugging with DCI. Connect to the AAEON UP Xtreme i11 (Tiger Lake), i12 (Alder Lake) and i14 (Meteor Lake) boards with JTAG.
Regular USB cables must not be used for DCI.ย
SourcePoint Enterprise
If you intend to use SourcePoint for commercial purposes, subscribe to our SourcePoint Enterprise license. Contact an ASSET sales representative below.
SourcePoint Home
Are you an individual researcher or hobbyist? You’re entitled to a low-cost Home license for non-commercial use. Scroll up and place your order online!