I read this blog post his weekend, might be of interest for some here:
Visualizing memory accesses of an executable
Links
Example Image
tracectory is a tool to analyze and visualize x86 instruction traces (of Windows executables, currently). The tool preprocesses an instruction trace using the miasm reverse engineering framework, and enables the user then to
- graph memory accesses
- show CPU state at arbitrary points in time
- show memory contents at arbitrary points in time (locations whose value can easily be deduced from the trace)
- trace data flow to see how the value of a certain memory write was derived