Ida pro plugin. The antiVM aims to quickly identify anti-virtual machine and anti-sandbox behavior. This can speed up malware analysis.
☆45Sep 2, 2022Updated 3 years ago
Alternatives and similar repositories for antiVM
Users that are interested in antiVM are comparing it to the libraries listed below
Sorting:
- CobaltStrike BOF - Inject ETW Bypass into Remote Process via Syscalls (HellsGate|HalosGate)☆30Dec 31, 2021Updated 4 years ago
- 2023 年 羊城杯 ezAndroid dex VMP 恢复工具☆37Nov 24, 2023Updated 2 years ago
- A kernel module for tracing signal☆31Jan 17, 2023Updated 3 years ago
- Small handy tool for crafting shellcodes by hand.☆18Apr 20, 2022Updated 3 years ago
- deobfuscation BR☆55Mar 4, 2024Updated 2 years ago
- 扫描以及恢复 r3hook 类☆10Aug 29, 2021Updated 4 years ago
- Load Dll into Kernel space☆40Aug 23, 2022Updated 3 years ago
- Android-Syscall-Logger☆22Feb 28, 2021Updated 5 years ago
- 笔者在一款基于LLVM编译器架构的retdec开源反编译器工具的基础上,融合了klee符号执行工具,通过符号执行(Symbolic Execution)引擎动态模拟反编译后的llvm的ir(中间指令集)运行源程序的方法,插桩所有的对x86指令集的thiscall类型函数对t…☆225Apr 6, 2022Updated 3 years ago
- ☆18Jun 12, 2022Updated 3 years ago
- Windows Kernel Knowledge && Collect Resources on the wire && Nothing innovation by myself &&☆62Jan 29, 2026Updated last month
- 🐞 A simple Windows x86 debugging framework written in C++20 that supports software breakpoints and hardware breakpoints. It can be used …☆13Mar 30, 2025Updated 11 months ago
- Dump PDB Symbols including support for Bochs Debugging Format (with wine support)☆14Aug 11, 2023Updated 2 years ago
- See https://gitlab.com/pandasauce/qsee-ta-tool for an up-to-date version☆13May 18, 2018Updated 7 years ago
- windbg调试协议wireshark抓包解析插件☆18Mar 17, 2024Updated 2 years ago
- ☆61Apr 1, 2022Updated 3 years ago
- an ida plugin used to decompile vmp☆376Jul 2, 2024Updated last year
- Collection of structures, prototype and examples for Microsoft Macro Assembler (MASM) x64.☆16Aug 18, 2020Updated 5 years ago
- A small tool to unmap PE memory dumps.☆11Nov 9, 2023Updated 2 years ago
- A simple tool to view important DLL Characteristics and change DEP and ASLR☆45Oct 26, 2018Updated 7 years ago
- try try full features ebpf on android without Pixel 6☆22Nov 1, 2022Updated 3 years ago
- Clr Injection for x64 and x86. Inject C# into Managed or Unmanaged Processes.☆18Sep 7, 2024Updated last year
- 2022 Updated Kernelmode-Code☆32Mar 23, 2024Updated last year
- A kernel module for protecting android rooted device☆39Jun 6, 2023Updated 2 years ago
- Android Security Bug Queries for CheckMarx☆20Sep 13, 2022Updated 3 years ago
- 跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式…☆79Dec 17, 2023Updated 2 years ago
- An approach to utilize auditd under Android 6+☆23Aug 24, 2018Updated 7 years ago
- A Project for people to study android svc.☆25Aug 12, 2022Updated 3 years ago
- A program to read and modify the memory of other processes.☆20May 19, 2023Updated 2 years ago
- 《关于编写 x64 Windows 10 驱动以了解虚拟内存这件事》系列视频附带的代码和材料☆104Jan 26, 2023Updated 3 years ago
- 看雪 LLVM与代码混淆技术 笔记☆23Aug 31, 2023Updated 2 years ago
- this is frida trace assemble and register change tools☆173Oct 14, 2023Updated 2 years ago
- A kernel level driver for Windows built to configure the Blue Screen Of Death☆21Jul 30, 2021Updated 4 years ago
- Visual Studio template for GNU-EFI☆16May 16, 2022Updated 3 years ago
- 🔥🔥🔥libhooker 基板开发 注入dylib iOS逆向工程开发 越狱Jailbreak deb插件 - fishhook / Frida / iOSOpenDev / Cycript / MachOView / IDA / Hopper Disassemble…☆23Sep 27, 2022Updated 3 years ago
- API Hooking Engine on Windows 10☆12May 10, 2024Updated last year
- ☆25May 27, 2025Updated 9 months ago
- Code Deobfuscator x86_32/64☆52Aug 16, 2022Updated 3 years ago
- 关闭恶意驱动的文件和注册表保护☆14Jun 28, 2022Updated 3 years ago