Alternatives and similar repositories for GAMBA

Users that are interested in GAMBA are comparing it to the libraries listed below

• mrT4ntr4 / MODeflattener
  MODeflattener deobfuscates control flow flattened functions obfuscated by OLLVM using Miasm.
  ☆203Updated 4 years ago
• LLVMParty / TicklingVMProtect
  Assets for the "Tickling VMProtect with LLVM" blog post.
  ☆166Updated 4 years ago
• bigBestWay / CodeObfs
  LLVM based "VM" obfuscator
  ☆152Updated 4 years ago
• gdbinit / HexRaysDeob
  Hex-Rays OLLVM Deobfuscator and MicroCode Explorer
  ☆180Updated 5 years ago
• pgarba / SiMBA-
  Port of MBA Solver SiMBA to C/C++ (MBA deobfuscation in real world applications)
  ☆106Updated 3 months ago
• DenuvoSoftwareSolutions / SiMBA
  Efficient Deobfuscation of Linear Mixed Boolean-Arithmetic Expressions
  ☆181Updated 2 years ago
• merces / showcomments
  IDA Pro plugin that displays all comments in a database
  ☆74Updated last week
• HongThatCong / FindCrypt3
  Find crypto constants IDA 7.x plugin
  ☆122Updated 3 years ago
• maskelihileci / IDA_Ollvm-unflattener
  Control Flow Flattening Deobfuscator for Obfuscator-LLVM as a plugin for IDA Pro.
  ☆90Updated 9 months ago
• AntoineBlaud / TheCodexRebirth
  Taint Analysis Engine and Trace Exploration : Overcome Obfuscation
  ☆52Updated 3 months ago
• tomrus88 / OpenLumina
  IDA plugin that allows connecting to third party Lumina servers
  ☆143Updated last month
• harlamism / IdaClu
  IdaClu is a version agnostic IDA Pro plugin for grouping similar functions. Pick an existing grouping algorithm or create your own.
  ☆180Updated last week
• za233 / LLVMMyPass
  My toy llvm pass
  ☆139Updated 3 years ago
• kweatherman / ida_missinglink
  IDA Plugin that fills in missing indirect CALL & JMP target information
  ☆141Updated last year
• 3intermute / arm64_silent_syscall_hook
  silent syscall hooking without modifying sys_call_table/handlers via patching exception handler
  ☆152Updated last year
• Accenture / protobuf-finder
  IDA Pro plugin for reconstructing original .proto files from binary.
  ☆298Updated 7 months ago
• Sandspeare / ida2llvm
  ☆62Updated last year
• CKCat / d810
  fork 自 https://gitlab.com/eshard/d810 添加了参考文章、测试样本，作为备份。
  ☆16Updated 4 years ago
• Rhydon1337 / linux-kernel-so-injector
  Kernel mode to user mode so injection
  ☆91Updated 5 years ago
• zhkl0228 / d810
  D-810 is an IDA Pro plugin which can be used to deobfuscate code at decompilation time by modifying IDA Pro microcode.
  ☆64Updated 4 years ago
• overfl0 / IDAPython-pycharm-setup
  How to setup Pycharm to run scripts in IDA using the Run menu (or a keybind)
  ☆42Updated last year
• w00tzenheimer / d810-ng
  D810-ng (Next Generation) is an updated, tested, refactored, and optimized IDA Pro plugin used to deobfuscate code at decompilation time …
  ☆100Updated this week
• goatmilkkk / nuitka-helper
  Symbol Recovery Tool for Nuitka Binaries
  ☆78Updated last year
• JayRE114514 / UserComment
  An IDA pro plugin to display user-added comments in disassembly and pseudocode views.
  ☆89Updated 2 years ago
• quarkslab / qsynthesis
  Greybox Synthesizer geared for deobfuscation of assembly instructions.
  ☆165Updated 11 months ago
• allthingsida / strikeout
  IDA strike-out: A Hex-Rays decompiler plugin to patch the Ctree
  ☆126Updated 2 months ago
• HexRaysSA / ida-domain
  IDA Domain API - Python interface for IDA Pro reverse engineering platform
  ☆235Updated this week
• bluesadi / debogus
  Deobfuscate OLLVM Bogus Control Flow via angr
  ☆68Updated 4 years ago
• FelixBer / FindFunc
  FindFunc is an IDA Pro plugin to find code functions that contain a certain assembly or byte pattern, reference a certain name or string,…
  ☆354Updated 2 months ago
• Tai7sy / NoVmp
  A static devirtualizer for VMProtect x64 3.x. powered by VTIL.
  ☆24Updated 7 months ago