Reverse engineering tutorials
☆159Oct 17, 2017Updated 8 years ago
Alternatives and similar repositories for tuts
Users that are interested in tuts are comparing it to the libraries listed below
Sorting:
- IDA script for vmprotect Windows Api address decoder☆54Jun 8, 2021Updated 4 years ago
- A set of exploitation/reversing aids for IDA☆421Nov 28, 2017Updated 8 years ago
- Hypervisor-based debugger☆191Dec 2, 2020Updated 5 years ago
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆32Aug 7, 2019Updated 6 years ago
- Virtual Machine Introspection, Tracing & Debugging☆596Feb 22, 2022Updated 4 years ago
- Windows Installer Bypass using Rollback Script .rbs and .rbf - Race Condition☆22May 24, 2019Updated 6 years ago
- r0akmap is a PoC driver manual mapper based on r0ak☆38Aug 18, 2018Updated 7 years ago
- Analyze PatchGuard☆56Aug 19, 2018Updated 7 years ago
- Demo List cm/ps/ob/minifilter callback And Patch/Bypass it☆29Dec 5, 2017Updated 8 years ago
- VMAttack PlugIn for IDA Pro☆866Nov 30, 2017Updated 8 years ago
- This is a place to share my miscellaneous projects.☆116May 2, 2020Updated 5 years ago
- This is a collection of interesting codes about Windows Process creation.☆237Jan 12, 2024Updated 2 years ago
- PoC for CVE-2019-0888 - Use-After-Free in Windows ActiveX Data Objects (ADO)☆40Jul 9, 2019Updated 6 years ago
- A static devirtualizer for VMProtect x64 3.x. powered by VTIL.☆2,083Aug 8, 2021Updated 4 years ago
- A VMP to VTIL lifter.☆445May 20, 2021Updated 4 years ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆437Aug 22, 2018Updated 7 years ago
- Automatic and platform-independent unpacker for Windows binaries based on emulation☆743Aug 18, 2025Updated 6 months ago
- PinVMP:虚拟化代码辅助分析工具☆148May 27, 2018Updated 7 years ago
- fix vmprotect import function used unicorn-engine.☆99Apr 4, 2023Updated 2 years ago
- Static unpacker for FinSpy VM☆103Jul 11, 2021Updated 4 years ago
- ☆100Nov 5, 2021Updated 4 years ago
- ☆14Jul 8, 2019Updated 6 years ago
- The content of this repository aims to assist efforts on analysing inner working principles, functionalities, and properties of the Micro…☆150May 29, 2020Updated 5 years ago
- A Fuzzer for Windows NDIS Drivers OID Handlers☆96Nov 4, 2021Updated 4 years ago
- Collection Of Anti-Debugging Tricks☆100Dec 19, 2015Updated 10 years ago
- ☆46Aug 21, 2019Updated 6 years ago
- by others☆40Jan 28, 2018Updated 8 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆37Jul 8, 2024Updated last year
- driver manual mapper (outdated/for educational purposes)☆115May 17, 2019Updated 6 years ago
- Universal x86/x64 VMProtect 2.0-3.X Import fixer☆20Dec 29, 2021Updated 4 years ago
- Zerokit/GAPZ rootkit (non buildable and only for researching)☆185Mar 30, 2019Updated 6 years ago
- ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…☆229Mar 22, 2023Updated 2 years ago
- Driver demonstrating how to register a DPC to asynchronously wait on an object☆50Jan 15, 2021Updated 5 years ago
- Various scripts for the Hexrays decompiler☆95Jul 22, 2023Updated 2 years ago
- proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC☆1,272May 1, 2024Updated last year
- Framework to test any Anti-Cheat☆821Jul 25, 2022Updated 3 years ago
- This is a VmProtect integrated debugger, that will essentially allow you to disasm and debug vmp partially virtualized functions at the v…☆47Oct 18, 2016Updated 9 years ago
- Collaborative Reverse Engineering plugin for IDA Pro & Hex-Rays☆666Feb 17, 2021Updated 5 years ago
- An aggregate of tools used in the core of vmp_dbg plus other parsing utils to parse vmp bc.☆16Oct 18, 2016Updated 9 years ago