Nitr0-G / Rework-part-of-z3-proving
This is the PoC of a dynamic lifter and deobfuscator with collecting trace.
☆32Updated last year
Related projects ⓘ
Alternatives and complementary repositories for Rework-part-of-z3-proving
- ☆32Updated 9 months ago
- This is a ring -1 header framework in order to simplify the creation of hypervisors on SVM☆22Updated last year
- ☆36Updated last year
- VMProtectTest☆36Updated last year
- devirtualization vmprotect☆61Updated last year
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆60Updated last year
- ☆36Updated 2 years ago
- How Meltdown and Spectre haunt Anti-Cheat: DVRT details☆20Updated 2 months ago
- Improved VMP Idea(detect anti-anti-debug tools by bug)☆40Updated last year
- Binary Ninja plugin for automating VMProtect analysis☆56Updated last year
- Code virtualizer☆21Updated 8 years ago
- vdk is a set of utilities used to help with exploitation of a vulnerable driver.☆39Updated 2 years ago
- LLVM obfuscation pass, flattening at the basic block's level and turning each basic block into a dispacher and each instruction into a ne…☆47Updated 3 years ago
- Binary Ninja plugin that can be used to apply Triton's dead store eliminitation pass on basic blocks or functions.☆58Updated 3 months ago
- vmp2.x devirtualization☆61Updated this week
- A library for intel VT-x hypervisor functionality supporting EPT shadowing.☆48Updated 3 years ago
- Fix VMProtect 3.xx (tested 3.0.9 to 3.5.0)☆16Updated 2 years ago
- Collection of obfuscation, tamper-proofing, and watermarking algorithms targeting LLVM IR.☆71Updated 4 years ago
- Kernel ReClassEx☆62Updated 11 months ago
- unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…☆52Updated 9 months ago
- A repository of IDA Databases and Binaries used for the analysis of popular commercial virtual-machine obfuscators☆62Updated 2 years ago
- ☆22Updated last year
- Me fockin' pe protector☆44Updated last year
- VTIL command line utility☆26Updated 2 years ago
- ☆19Updated 4 months ago
- Binary rewriter for 64-bit PE files.☆43Updated 9 months ago
- Using Zydis and LLVM to lift unsupported instructions to LLVM-IR☆27Updated 3 years ago
- Create stealthy, inline, EPT-like hooks using SMAP and SMEP☆32Updated 3 weeks ago
- Lightweight PDB symbol parser and resolver☆25Updated last week