Hypervisor-Level Memory Dump Dataset for Cloud VM Attack Simulation using Libvirt

This dataset contains raw memory dump images acquired at the hypervisor level from virtual machines deployed in a private cloud environment. Additionally it also has cloud telemetry data collected in the cloud orchestration. Which makes it unique dataset having correlation of the cloud telemetry and memory dumps acquired during attack and benign scenarios. The experiment scenarios used to generate the dataset simulated real-world cyber attacks on cloud-hosted virtual machines (VMs) , including attacker VM and victim VM interactions. Memory acquisition was performed using a hypervisor-agnostic approach via the libvirt API, ensuring minimal guest OS interference and preserving forensic soundness. The dataset includes analysis-ready raw memory dumps of both victim and attacker virtual machines, enabling reproducible research in cloud forensics, memory forensics, malware analysis, and incident response. These dumps are suitable for analysis using tools such as Volatility and similar memory forensics frameworks, and are intended to support research on evidence detection, attack reconstruction, and forensic triage in virtualized cloud environments.