Pusty / Obfuscat
Obfuscat is a tool and framework for obfuscation with predictable size and runtime overhead.
☆34Updated 10 months ago
Related projects ⓘ
Alternatives and complementary repositories for Obfuscat
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆62Updated last year
- IDA plugin to deobfuscate emotet CFF☆13Updated 2 years ago
- LLVM obfuscation pass, flattening at the basic block's level and turning each basic block into a dispacher and each instruction into a ne…☆47Updated 3 years ago
- IDA Python deobfuscation script for ConfuserEx binaries☆35Updated 2 years ago
- Playing with LLVM passes☆35Updated last year
- Collection of obfuscation, tamper-proofing, and watermarking algorithms targeting LLVM IR.☆71Updated 5 years ago
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…☆26Updated last year
- Implementation of sllvm obfuscator☆62Updated 2 years ago
- This x64dbg plugin allows you to upload your sample to Malcore and view the results.☆32Updated last year
- Triton based symbolic emulator☆16Updated 2 years ago
- devirtualization vmprotect☆61Updated last year
- A GKI Android kernel driver(ARMv8.3) template compiled by llvm-msvc☆30Updated 6 months ago
- Simplifier vmp ultra☆14Updated 11 months ago
- api-tracer is a tiny (useless) tracer☆13Updated last year
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆69Updated last year
- ☆28Updated 2 years ago
- Binary Ninja plugin for automating VMProtect analysis☆57Updated last year
- IDA plugin to aid with Swift reverse engineering☆22Updated 3 weeks ago
- ☆21Updated 4 months ago
- ☆19Updated 7 years ago
- This is the PoC of a dynamic lifter and deobfuscator with collecting trace.☆32Updated last year
- Me fockin' pe protector☆45Updated 2 years ago
- ☆32Updated 9 months ago
- A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.☆28Updated 2 years ago
- A driver to implement IOCTL hooking☆23Updated 2 years ago
- How to setup Pycharm to run scripts in IDA using the Run menu (or a keybind)☆39Updated 5 months ago
- Inlay hints for hex-rays☆28Updated last month
- A collection of LLVM passes for obfuscating☆30Updated last year
- ☆25Updated 3 weeks ago
- vdk is a set of utilities used to help with exploitation of a vulnerable driver.☆39Updated 2 years ago