Ahora57 / VMP_UTILView external linksLinks
PoC over some VMP features
☆24Jul 26, 2025Updated 6 months ago
Alternatives and similar repositories for VMP_UTIL
Users that are interested in VMP_UTIL are comparing it to the libraries listed below
Sorting:
- Detect suspend you process☆13Jun 7, 2023Updated 2 years ago
- PoC code for IsValidImageCRC()☆22May 3, 2023Updated 2 years ago
- VMProtect 2.x-3.x x64 Import Deobfuscator☆420Oct 22, 2025Updated 3 months ago
- Find your offsets the cool way, :)☆13Jan 24, 2024Updated 2 years ago
- ☆14Apr 15, 2024Updated last year
- Preventing internal cheats with process mitigation policies☆14Jul 23, 2023Updated 2 years ago
- function identification signatures☆12Apr 26, 2021Updated 4 years ago
- Frida script to dump native libraries from running process on Android, inspired by frida_dump☆14Aug 16, 2023Updated 2 years ago
- ☆42Jan 7, 2025Updated last year
- 🤡 single header wrapper around Windows WMI for C++☆14Jan 26, 2022Updated 4 years ago
- Another UEFI runtime bootkit☆36May 8, 2023Updated 2 years ago
- ☆16Feb 25, 2023Updated 2 years ago
- Detour library (x64 and x86 compatible)☆13Dec 15, 2020Updated 5 years ago
- Triton based symbolic emulator☆16Oct 30, 2022Updated 3 years ago
- AMx64 is a simulated 64-bit environment that can interpret nasm-like asm code. It allows a usage of different 64-bit registers and 64-bit…☆22Dec 22, 2023Updated 2 years ago
- Improved VMP Idea(detect anti-anti-debug tools by bug)☆47Jun 7, 2023Updated 2 years ago
- Tool to dump EFI runtime drivers.☆39Feb 23, 2024Updated last year
- Yet another kernel driver to bypass kernel-level anti-cheats☆17May 4, 2025Updated 9 months ago
- shadow tls☆17Nov 13, 2022Updated 3 years ago
- A devirtualization engine for Themida.☆106Mar 2, 2024Updated last year
- Win32 PE (dll, sys, exe) remote manual mapper written on PHP with injector-client written on C++20☆73Feb 28, 2023Updated 2 years ago
- A Windows Direct Syscall Library☆52Apr 23, 2025Updated 9 months ago
- 🔎 Analysis of Oreans: Looking inside Themida, WinLicense, and CodeVirtualizer☆37Aug 28, 2020Updated 5 years ago
- A repository of IDA Databases and Binaries used for the analysis of popular commercial virtual-machine obfuscators☆72Oct 7, 2022Updated 3 years ago
- Emulate Drivers in RING3 with self context mapping or unicorn☆21Jan 1, 2025Updated last year
- ☆83Apr 23, 2024Updated last year
- sample bypass anti-anti-debug tool by race condition☆27Aug 2, 2022Updated 3 years ago
- Header only library for binding, reordering and currying of function arguments without cost☆17Jun 20, 2018Updated 7 years ago
- x86-64 Automated test data generator☆26Aug 18, 2025Updated 5 months ago
- ☆15Sep 26, 2021Updated 4 years ago
- LLVM based devirtualization PoC’s.☆21Dec 11, 2021Updated 4 years ago
- ☆47Jul 7, 2024Updated last year
- viewing page boundaries of pages with PAGE_NOACCESS protection reveals the presence of x64dbg.☆26Jan 1, 2017Updated 9 years ago
- POC Windows kernel driver that spoofs threads for NMI callbacks on x86-64.☆24Mar 30, 2025Updated 10 months ago
- Multi-Layer Automata-Based Encryption strings☆25Jul 9, 2024Updated last year
- read / write memory from a proxy process by injecting shellcode☆20Dec 23, 2025Updated last month
- Stealing signatures from pe files☆15Apr 1, 2025Updated 10 months ago
- genpatch is IDA plugin that generates a python script for patching binary☆37Dec 21, 2023Updated 2 years ago
- Just my first IOCTL try☆75Jul 9, 2020Updated 5 years ago