Alternatives and similar repositories for microsoft-warbird

Users that are interested in microsoft-warbird are comparing it to the libraries listed below

• Dump-GUY / IDA_PHNT_TYPES
  Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
  ☆153Updated last year
• ergrelet / themida-spotter-bn
  A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.
  ☆82Updated last year
• KiFilterFiberContext / warbird-obfuscator
  Integration of Microsoft Warbird with the MSVC compiler
  ☆112Updated 2 years ago
• KiFilterFiberContext / windows-software-policy
  Research on obfuscated licensing APIs / CLIP service in the Windows kernel
  ☆122Updated 3 years ago
• mibho / x64dbg-vmp-trace
  unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…
  ☆62Updated last year
• android1337 / brkida
  C++ macro for x64 programs that breaks ida hex-rays decompiler tool.
  ☆127Updated last year
• charlesnathansmith / whatlicense
  WinLicense key extraction via Intel PIN
  ☆101Updated last year
• can1357 / IdaThemer
  🎨 Seamlessly convert your favorite Visual Studio Code themes to IDA Pro themes.
  ☆115Updated last year
• binsnake / KUBERA
  A x86_64 software emulator
  ☆149Updated 3 weeks ago
• w1redch4d / Artfuscator
  A C compiler targeting an artistically pleasing nightmare for reverse engineers
  ☆101Updated 9 months ago
• ThatLing / limba
  compile-time control flow obfuscation using mba
  ☆192Updated 2 years ago
• sodareverse / TDE
  A devirtualization engine for Themida.
  ☆100Updated last year
• badhive / stitch
  Rewrite and obfuscate code in compiled binaries
  ☆233Updated last week
• ergrelet / themida-unmutate-bn
  A Binary Ninja plugin to deobfuscate Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.
  ☆33Updated last year
• dmaivel / ntoseye
  Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
  ☆95Updated 3 months ago
• kweatherman / ida_missinglink
  IDA Plugin that fills in missing indirect CALL & JMP target information
  ☆131Updated 8 months ago
• Azvanzed / CVE-2024-44083
  Makes IDA (most versions) to crash upon opening it.
  ☆101Updated last year
• milankovo / hexinlay
  Inlay hints for hex-rays
  ☆69Updated 5 months ago
• HongThatCong / IDA_TILs
  IDA Type Info Libraries for RE
  ☆31Updated 8 months ago
• ZehMatt / zyemu
  x86-64 user mode emulation using Zydis
  ☆64Updated 2 weeks ago
• connorjaydunn / BinaryShield
  An x86-64 Code Virtualizer
  ☆284Updated 11 months ago
• Fatmike-GH / Fatpack
  A Windows executable (PE) packer (x64) with LZMA compression and with full TLS (Thread Local Storage) support
  ☆76Updated 2 months ago
• KiFilterFiberContext / warbird-hook
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆253Updated 3 years ago
• mazeworks-security / Simplifier
  Efficient general mixed boolean-arithmetic (MBA) simplifier
  ☆100Updated last week
• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆152Updated last year
• ssnob / hidden_syscall_monitoring
  monitors hidden syscalls called from call of duty anticheat
  ☆84Updated 8 months ago
• thesecretclub / riscy-business
  RISC-V Virtual Machine
  ☆246Updated 3 months ago
• rce-3 / xenith
  Research-focused hypervisor offering advanced tools for debugging, virtual machine introspection, and automation.
  ☆39Updated last week
• AzzOnFire / emuit
  Easy-to-use IDA plugin for code emulation
  ☆40Updated last week
• mzakocs / VirtualizationObfuscatorAnalysis
  A repository of IDA Databases and Binaries used for the analysis of popular commercial virtual-machine obfuscators
  ☆70Updated 2 years ago