AzzOnFire / yarkaLinks
IDA plugin for YARA signature creation
☆11Updated 8 months ago
Alternatives and similar repositories for yarka
Users that are interested in yarka are comparing it to the libraries listed below
Sorting:
- devirtualization vmprotect☆62Updated 2 years ago
- ☆36Updated 2 years ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆67Updated last year
- ☆21Updated 5 months ago
- This is the PoC of a dynamic lifter and deobfuscator with collecting trace.☆35Updated last year
- Just an example of a well-known technique to detect memory tampering via Windows Working Sets.☆16Updated 3 years ago
- Generate a PDB file given the old PDB file and an address mapping☆48Updated 4 months ago
- Binary Ninja plugin for automating VMProtect analysis☆61Updated 2 years ago
- IDA Python deobfuscation script for ConfuserEx binaries☆35Updated 2 years ago
- Simple x64dbg plugin to save a full memory dump☆50Updated 2 years ago
- A debugger backend for IDA Pro built on top of of Intel’s PIN framework☆31Updated last year
- ☆22Updated last year
- Symbolic Execution based on lifting amd64 to z3☆28Updated last year
- Disassembler for Zeus VM custom instruction set☆28Updated last year
- ☆15Updated 2 years ago
- Fork of Scylla with additional fixes and Python bindings.☆44Updated last year
- x64dbg python3 plugin☆23Updated last month
- Emulate Drivers in RING3 with self context mapping or unicorn☆19Updated 6 months ago
- IDA Type Info Libraries for RE☆31Updated 6 months ago
- X86/X64 Hardware Breakpoint Manager☆41Updated 4 years ago
- Extensions for x64dbg written in Rust: Telescope and Unicorn powered disassembly☆26Updated 2 years ago
- llvm powered deobfuscation of a vm-based protection☆38Updated 3 months ago
- Fix VMProtect 3.xx (tested 3.0.9 to 3.5.0)☆17Updated 3 years ago
- Plugin for ida pro that copies RVA under cursor to clipboard.☆13Updated last year
- ☆24Updated 10 months ago
- x86-64 user mode emulation using Zydis☆48Updated 6 months ago
- IDA plugin for analyzing, filtering and tracing functions and call flows☆14Updated last year
- A Binary Ninja plugin to deobfuscate Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.☆32Updated 11 months ago
- Elevate arbitrary MSR writes to kernel execution.☆38Updated last year
- IDA Map File Symbol Renamer☆22Updated 3 months ago