PoC over some VMP features
☆24Jul 26, 2025Updated 7 months ago
Alternatives and similar repositories for VMP_UTIL
Users that are interested in VMP_UTIL are comparing it to the libraries listed below
Sorting:
- Detect suspend you process☆13Jun 7, 2023Updated 2 years ago
- PoC code for IsValidImageCRC()☆22May 3, 2023Updated 2 years ago
- VMProtect 2.x-3.x x64 Import Deobfuscator☆429Oct 22, 2025Updated 4 months ago
- Find your offsets the cool way, :)☆12Jan 24, 2024Updated 2 years ago
- function identification signatures☆12Apr 26, 2021Updated 4 years ago
- Frida script to dump native libraries from running process on Android, inspired by frida_dump☆14Aug 16, 2023Updated 2 years ago
- Preventing internal cheats with process mitigation policies☆14Jul 23, 2023Updated 2 years ago
- ☆14Apr 15, 2024Updated last year
- ☆42Jan 7, 2025Updated last year
- 🤡 single header wrapper around Windows WMI for C++☆14Jan 26, 2022Updated 4 years ago
- Another UEFI runtime bootkit☆37May 8, 2023Updated 2 years ago
- Detour library (x64 and x86 compatible)☆13Dec 15, 2020Updated 5 years ago
- ☆17Feb 23, 2023Updated 3 years ago
- ☆16Feb 25, 2023Updated 3 years ago
- AMx64 is a simulated 64-bit environment that can interpret nasm-like asm code. It allows a usage of different 64-bit registers and 64-bit…☆21Dec 22, 2023Updated 2 years ago
- Triton based symbolic emulator☆16Oct 30, 2022Updated 3 years ago
- Improved VMP Idea(detect anti-anti-debug tools by bug)☆47Jun 7, 2023Updated 2 years ago
- Tool to dump EFI runtime drivers.☆39Feb 23, 2024Updated 2 years ago
- Yet another kernel driver to bypass kernel-level anti-cheats☆17May 4, 2025Updated 10 months ago
- shadow tls☆17Nov 13, 2022Updated 3 years ago
- A devirtualization engine for Themida.☆107Mar 2, 2024Updated 2 years ago
- A Windows Direct Syscall Library☆52Apr 23, 2025Updated 10 months ago
- Win32 PE (dll, sys, exe) remote manual mapper written on PHP with injector-client written on C++20☆74Feb 28, 2023Updated 3 years ago
- 🔎 Analysis of Oreans: Looking inside Themida, WinLicense, and CodeVirtualizer☆37Aug 28, 2020Updated 5 years ago
- A repository of IDA Databases and Binaries used for the analysis of popular commercial virtual-machine obfuscators☆72Oct 7, 2022Updated 3 years ago
- Emulate Drivers in RING3 with self context mapping or unicorn☆21Jan 1, 2025Updated last year
- sample bypass anti-anti-debug tool by race condition☆27Aug 2, 2022Updated 3 years ago
- ☆15Sep 26, 2021Updated 4 years ago
- x86-64 Automated test data generator☆26Aug 18, 2025Updated 6 months ago
- LLVM based devirtualization PoC’s.☆21Dec 11, 2021Updated 4 years ago
- Header only library for binding, reordering and currying of function arguments without cost☆17Jun 20, 2018Updated 7 years ago
- ☆82Apr 23, 2024Updated last year
- ☆47Jul 7, 2024Updated last year
- viewing page boundaries of pages with PAGE_NOACCESS protection reveals the presence of x64dbg.☆26Jan 1, 2017Updated 9 years ago
- read / write memory from a proxy process by injecting shellcode☆20Dec 23, 2025Updated 2 months ago
- Multi-Layer Automata-Based Encryption strings☆25Jul 9, 2024Updated last year
- Stealing signatures from pe files☆15Apr 1, 2025Updated 11 months ago
- POC Windows kernel driver that spoofs threads for NMI callbacks on x86-64.☆24Mar 30, 2025Updated 11 months ago
- page table manipulation to gain physical r/w☆44May 7, 2024Updated last year