ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.
☆91May 23, 2019Updated 6 years ago
Alternatives and similar repositories for ANBU
Users that are interested in ANBU are comparing it to the libraries listed below
Sorting:
- A working version of this tutorial: https://docs.microsoft.com/en-us/windows/desktop/rpc/tutorial☆16Jun 22, 2019Updated 6 years ago
- Solution for Ricardo Narvaja's C++ Exploiting Exercise☆12Jul 21, 2019Updated 6 years ago
- Lightweight WINAPI tracing with Pin☆27Aug 22, 2019Updated 6 years ago
- idenLib - Library Function Identification [This project is not maintained anymore]☆395Mar 17, 2019Updated 6 years ago
- Zerokit/GAPZ rootkit (non buildable and only for researching)☆185Mar 30, 2019Updated 6 years ago
- This repository contains various files linked to Operation Shadowhammer as it was originally discovered by Kaspersky Team.☆12Mar 27, 2019Updated 6 years ago
- Automatic and platform-independent unpacker for Windows binaries based on emulation☆743Aug 18, 2025Updated 6 months ago
- Utility for dumping all the information Capstone has on given instructions.☆23Oct 1, 2021Updated 4 years ago
- ☆76Sep 30, 2021Updated 4 years ago
- Create and use macros in IDA's CLIs☆66Dec 26, 2025Updated 2 months ago
- 🧶 The Win32 usermode threading library with UMS/fibers/threads support☆30Jul 1, 2019Updated 6 years ago
- Basic BIOS emulator for Unicorn Engine.☆101Aug 2, 2021Updated 4 years ago
- IDA 7.0 meets watch view!☆43Sep 6, 2021Updated 4 years ago
- Debugger extension for the Debugging Tools for Windows (WinDbg, KD, CDB, NTSD).☆69Nov 14, 2016Updated 9 years ago
- Simple 32/64-bit PEs loader.☆139Dec 19, 2018Updated 7 years ago
- It is a tool to analyze the pattern of memory mapped file I/O using Intel pin.☆19Apr 2, 2018Updated 7 years ago
- Driver Loader/BE Bypass/Win Malware(lol)☆36Jun 25, 2019Updated 6 years ago
- ☆429May 16, 2021Updated 4 years ago
- enable libemu run pe file and add some good modify☆14Feb 4, 2019Updated 7 years ago
- init☆14Mar 16, 2020Updated 5 years ago
- An API Monitor based on Instrumentation☆43Dec 19, 2017Updated 8 years ago
- a binary x86win32 code obfuscator using virtual machine☆31Jan 8, 2017Updated 9 years ago
- Ghidra Decompiler Plugin for IDA Pro☆175May 16, 2024Updated last year
- ☆14Aug 15, 2018Updated 7 years ago
- A driver that supports communication between a Windows guest and HyperWin☆15Jan 6, 2021Updated 5 years ago
- Forked from Akayan. Windows Kernel Exploitation. Static & dynamic analysis, exploits & vuln reasearch. Mitigations bypass's, genric bug-c…☆16Oct 29, 2024Updated last year
- The Multiplatform Linux Sandbox☆16Dec 19, 2023Updated 2 years ago
- reverse engineering extension plugin for windbg☆121Sep 30, 2019Updated 6 years ago
- Virtual Machine Introspection, Tracing & Debugging☆596Feb 22, 2022Updated 4 years ago
- Binee: binary emulation environment☆530Feb 25, 2023Updated 3 years ago
- Collects extended function properties from IDA Pro databases☆94Dec 6, 2020Updated 5 years ago
- VMAttack PlugIn for IDA Pro☆866Nov 30, 2017Updated 8 years ago
- Collaborative Reverse Engineering plugin for IDA Pro & Hex-Rays☆666Feb 17, 2021Updated 5 years ago
- Generates YARA rules to detect malware using API hashing☆17Mar 16, 2021Updated 4 years ago
- CallMon is an experimental system call monitoring tool that works on Windows 10 versions 2004+ using PsAltSystemCallHandlers☆145Sep 5, 2020Updated 5 years ago
- The slides from my Saintcon 2019 talk.☆48Feb 9, 2020Updated 6 years ago
- My own versions from the programs of the book "Practical Binary Analysis"☆55Mar 26, 2019Updated 6 years ago
- VT-based PCI device monitor (SPI)☆158Oct 29, 2020Updated 5 years ago
- Integration of Syntia program synthesis tool into the radare2 reverse engineering framework.☆21Dec 4, 2025Updated 2 months ago