0xnobody / vmpdumpLinks
A dynamic VMP dumper and import fixer, powered by VTIL.
☆1,283Updated 4 years ago
Alternatives and similar repositories for vmpdump
Users that are interested in vmpdump are comparing it to the libraries listed below
Sorting:
- A static devirtualizer for VMProtect x64 3.x. powered by VTIL.☆2,044Updated 4 years ago
- Hypervisor based anti anti debug plugin for x64dbg☆1,448Updated last year
- Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.☆892Updated last year
- Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.☆1,308Updated 3 years ago
- x64dbg plugin to bypass Themida 3.x Anti-Debugger / VM / Monitoring programs checks (x64)☆537Updated 4 years ago
- Dynamic unpacker and import fixer for Themida/WinLicense 2.x and 3.x.☆1,232Updated 2 years ago
- Virtual-machine Translation Intermediate Language☆1,427Updated last year
- A collection of x64dbg scripts. Feel free to submit a pull request to add your script.☆530Updated last year
- Hiding kernel-driver for x86/x64.☆2,454Updated last week
- Dumping processes using the power of kernel space !☆1,033Updated last year
- Hook system calls on Windows by using Kaspersky's hypervisor☆1,232Updated last year
- Turn off PatchGuard in real time for win7 (7600) ~ later☆1,023Updated 3 years ago
- VMProtect 3.x Anti-debug Method Improved☆615Updated 6 years ago
- xAnalyzer plugin for x64dbg☆1,133Updated last month
- A bunch of Windows anti-debugging tricks for x86 and x64.☆793Updated 4 years ago
- Imports Reconstructor☆1,257Updated 2 years ago
- VirtualKD-Redux - A revival and modernization of VirtualKD☆925Updated last year
- Official x64dbg plugin for IDA Pro.☆527Updated 11 months ago
- kernel-mode Anti-Anti-Debug plugin. based on intel vt-x && ept technology☆440Updated 4 years ago
- A private Lumina server for IDA Pro☆1,036Updated 3 months ago
- Titan is a VMProtect devirtualizer☆90Updated last year
- A VMP to VTIL lifter.☆440Updated 4 years ago
- Monitoring and controlling kernel API calls with stealth hook using EPT☆1,294Updated 3 years ago
- VMAttack PlugIn for IDA Pro☆845Updated 7 years ago
- The functions interception library written on pure C and NativeAPI with UserMode and KernelMode support☆749Updated 4 months ago
- proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC☆1,246Updated last year
- PDBRipper is a utility for extract an information from PDB-files.☆850Updated this week
- Windows kernel hacking framework, driver template, hypervisor and API written on C++☆1,757Updated last year
- IDA Pro 7 and up compatible SigMaker plugin☆560Updated 3 years ago
- Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.☆893Updated 5 years ago