Soorya005/PhantomScope — reverse-engineered prompt
Reverse engineered prompt
Build me a small Python based forensic research tool called PhantomScope that can inspect KVM and QEMU virtual machines from a Debian or Linux host. I want to be able to run one command and have it enumerate available VMs, acquire memory from a selected guest, analyze that memory, pull out useful artifacts, and then do a cross view check to spot processes that look hidden or suspicious.
Please make the flow feel like a real investigation pipeline, with clear console output for each stage, useful alerts with severity levels like medium and critical, and some simple analysis stats. Save the final results as a timestamped JSON report in a reports folder so I can review what was found later.
It is okay if the hidden process detection is still a proof of concept and uses simulated process views where needed, but the structure should be ready for real memory analysis. If needed, look up current docs online for the VM and memory forensics parts.
Want more depth? Deep Reverse