Windows NT was the first Microsoft operating system that exploited the 32bit addresses first introduced with the Intel 80386 CPUs Static analysis gathers information about the program by investigating its source code or its binary representation First we describe the information that our analysis captures during execution of the emulated system To enforce the partition of applications and the operating system core they are run in different processor access modes plasmatron, passing it along the parameters that were extracted During the evaluation phase we encountered the necessity to commit single block devices only, functionality not provided by Qemu at that time Our project is built on top of the Qemu full system emulator that allows us to perform the taint analysis on hardware level water striderFor their approach it was enough to implement data tainting whereas our project needs to provide address tainting as well ion sources responsibility to pop the arguments off the stack