Colton1skees / KParser
.NET Tool for parsing and utilizing x86 semantics defined in K. It currently features a WIP symbolic expression generator for VTIL.
☆16Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for KParser
- A collection of Binary Ninja plugins☆23Updated 2 years ago
- A set of small utilities, helpers for PIN tracers☆31Updated last year
- Simple x64dbg plugin to show registers on every step.☆16Updated 5 years ago
- A way to detect DBI frameworks, Debuggers and VMs.☆22Updated 3 years ago
- Simple tool to check visual studio project files for Exec, PreBuildEvent and PostBuildEvent☆11Updated 4 years ago
- A Windows API hooking library !☆30Updated 2 years ago
- Reverse engineered API for Microsoft's Time Travel Debugger☆32Updated 6 months ago
- 🧶 The Win32 usermode threading library with UMS/fibers/threads support☆30Updated 5 years ago
- CTF writeups☆33Updated last month
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…☆26Updated last year
- Small project to generate fake DLLs based on an executable's import table☆22Updated 4 years ago
- PDB Dumping Tool☆56Updated 2 years ago
- Using Zydis and LLVM to lift unsupported instructions to LLVM-IR☆27Updated 3 years ago
- kernel driver used to monitor the activity of BadlionAnticheat.sys by patching its IAT☆32Updated 3 years ago
- Symbolic expression simplifier used across VTIL toolchain. Moved into -->☆24Updated 4 years ago
- An experimental dynamic malware unpacker based on Intel Pin and PE-sieve☆57Updated 2 months ago
- ☆11Updated 3 years ago
- ollvm 4.0 using clang 10.0.1☆13Updated 3 years ago
- Plugin for x64dbg to disable parallel loading of dependencies☆19Updated 2 years ago
- A driver to implement IOCTL hooking☆23Updated 2 years ago
- LLVM based devirtualization PoC’s.☆20Updated 2 years ago
- A Binary Ninja plugin to deobfuscate Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.☆21Updated 3 months ago
- x64dbg python3 plugin☆21Updated 11 months ago
- A small library to extend the functionality of GetModuleHandle and GetProcAddress to other processes☆17Updated 4 years ago
- AMx64 is a simulated 64-bit environment that can interpret nasm-like asm code. It allows a usage of different 64-bit registers and 64-bit…☆23Updated 10 months ago
- Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode☆19Updated last year
- A reflexive driver loader to bypass Windows DSE (featuring a custom PE loader)☆38Updated 6 years ago