CKCat / d810
fork 自 https://gitlab.com/eshard/d810 添加了参考文章、测试样本,作为备份。
☆12Updated 3 years ago
Alternatives and similar repositories for d810:
Users that are interested in d810 are comparing it to the libraries listed below
- Deobfuscate OLLVM Bogus Control Flow via angr☆63Updated 3 years ago
- Simplification of General Mixed Boolean-Arithmetic Expressions: GAMBA☆126Updated last year
- D-810 is an IDA Pro plugin which can be used to deobfuscate code at decompilation time by modifying IDA Pro microcode.☆51Updated 3 years ago
- Toy LLVM obfuscator pass☆72Updated 3 years ago
- ollvm de-obfuscator☆59Updated 3 years ago
- 内核硬件调试器模块,rootkit操作 dump☆34Updated 3 years ago
- Taint Analysis Engine and Trace Exploration : Overcome Obfuscation☆38Updated last month
- break ollvm.☆99Updated 4 years ago
- IDA Python Script for anti ollvm-arm☆27Updated 3 years ago
- Hex-Rays OLLVM Deobfuscator and MicroCode Explorer☆140Updated 4 years ago
- a code virtualizer based on angr☆29Updated 2 years ago
- IDAPatternSearch adds a capability of finding functions according to bit-patterns into the well-known IDA Pro disassembler based on Ghidr…☆63Updated 3 years ago
- deflat plugins for ida pro☆35Updated last year
- IDA strike-out: A Hex-Rays decompiler plugin to patch the Ctree☆116Updated 8 months ago
- tprt ollvm 反混淆 修改 binja il☆39Updated 7 months ago
- LLVM Obfuscation Pass☆20Updated 4 months ago
- Library for Capstone instruction to LLVM IR translation☆45Updated 7 years ago
- Obfuscated Binaries☆29Updated 2 years ago
- ☆31Updated 4 years ago
- A program to read and modify the memory of other processes.☆17Updated last year
- IDA Python3 Plugin to make your RE life easier. Trace execution and save code/memory for detailed exploration.☆33Updated last year
- 跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式…☆66Updated last year
- ELF static analysis and injection framework that parse, manipulate, patch and camouflage ELF files.☆62Updated last month
- nanoMIPS IDA plugin☆67Updated 3 years ago
- vmp2.x devirtualization☆73Updated 5 months ago
- anti ollvm like flat/bcf/sub☆73Updated 5 years ago
- deobfuscation BR☆46Updated last year
- An approach to utilize auditd under Android 6+☆21Updated 6 years ago
- a plugin for ida of version 7.2 to help know F5 window codes better☆54Updated 5 years ago
- Another LLVM-obfuscator based on LLVM-17. A fork of Arkari☆72Updated last year