Alternatives and similar repositories for GAMBA

Users that are interested in GAMBA are comparing it to the libraries listed below

• mrT4ntr4 / MODeflattener
  MODeflattener deobfuscates control flow flattened functions obfuscated by OLLVM using Miasm.
  ☆202Updated 4 years ago
• bigBestWay / CodeObfs
  LLVM based "VM" obfuscator
  ☆152Updated 4 years ago
• LLVMParty / TicklingVMProtect
  Assets for the "Tickling VMProtect with LLVM" blog post.
  ☆165Updated 4 years ago
• pgarba / SiMBA-
  Port of MBA Solver SiMBA to C/C++ (MBA deobfuscation in real world applications)
  ☆106Updated 2 months ago
• gdbinit / HexRaysDeob
  Hex-Rays OLLVM Deobfuscator and MicroCode Explorer
  ☆178Updated 5 years ago
• DenuvoSoftwareSolutions / SiMBA
  Efficient Deobfuscation of Linear Mixed Boolean-Arithmetic Expressions
  ☆180Updated 2 years ago
• AntoineBlaud / TheCodexRebirth
  Taint Analysis Engine and Trace Exploration : Overcome Obfuscation
  ☆52Updated 3 months ago
• maskelihileci / IDA_Ollvm-unflattener
  Control Flow Flattening Deobfuscator for Obfuscator-LLVM as a plugin for IDA Pro.
  ☆90Updated 9 months ago
• merces / showcomments
  IDA Pro plugin that displays all comments in a database
  ☆74Updated last month
• CKCat / d810
  fork 自 https://gitlab.com/eshard/d810 添加了参考文章、测试样本，作为备份。
  ☆16Updated 4 years ago
• za233 / LLVMMyPass
  My toy llvm pass
  ☆139Updated 3 years ago
• tomrus88 / OpenLumina
  IDA plugin that allows connecting to third party Lumina servers
  ☆142Updated last month
• HongThatCong / FindCrypt3
  Find crypto constants IDA 7.x plugin
  ☆122Updated 3 years ago
• w00tzenheimer / d810-ng
  D810-ng (Next Generation) is an updated, tested, refactored, and optimized IDA Pro plugin used to deobfuscate code at decompilation time …
  ☆101Updated last week
• Sandspeare / ida2llvm
  ☆62Updated last year
• zhkl0228 / d810
  D-810 is an IDA Pro plugin which can be used to deobfuscate code at decompilation time by modifying IDA Pro microcode.
  ☆64Updated 4 years ago
• softsec-unh / MBA-Blast
  MBA-Blast is a tool for simplification of MBA expressions.
  ☆70Updated 4 years ago
• 3intermute / arm64_silent_syscall_hook
  silent syscall hooking without modifying sys_call_table/handlers via patching exception handler
  ☆152Updated last year
• mazeworks-security / MSiMBA
  Deobfuscation of Semi-Linear Mixed Boolean-Arithmetic Expressions
  ☆80Updated last week
• HexRaysSA / ida-domain
  IDA Domain API - Python interface for IDA Pro reverse engineering platform
  ☆232Updated 2 weeks ago
• harlamism / IdaClu
  IdaClu is a version agnostic IDA Pro plugin for grouping similar functions. Pick an existing grouping algorithm or create your own.
  ☆177Updated this week
• kweatherman / ida_missinglink
  IDA Plugin that fills in missing indirect CALL & JMP target information
  ☆141Updated last year
• mmert11 / binaryshield-devirtualizer
  llvm powered deobfuscation of a vm-based protection
  ☆46Updated 9 months ago
• 19h / ida-structor
  Structor is a Hex-Rays plugin that synthesizes C structures from raw pointer arithmetic.
  ☆54Updated 2 weeks ago
• za233 / IDADeflat
  deflat plugins for ida pro
  ☆45Updated 2 years ago
• AntoineBlaud / EasyRe
  IDA Python3 Plugin to make your RE life easier. Trace execution and save code/memory for detailed exploration.
  ☆32Updated last year
• overfl0 / IDAPython-pycharm-setup
  How to setup Pycharm to run scripts in IDA using the Run menu (or a keybind)
  ☆42Updated last year
• AzzOnFire / emuit
  Easy-to-use IDA plugin for code emulation
  ☆52Updated 2 months ago
• quarkslab / qsynthesis
  Greybox Synthesizer geared for deobfuscation of assembly instructions.
  ☆165Updated 11 months ago
• bluesadi / debogus
  Deobfuscate OLLVM Bogus Control Flow via angr
  ☆68Updated 4 years ago