RolfRolles / FinSpyVMLinks
Static unpacker for FinSpy VM
☆101Updated 4 years ago
Alternatives and similar repositories for FinSpyVM
Users that are interested in FinSpyVM are comparing it to the libraries listed below
Sorting:
- A project that aims to automatically devirtualize code that has been virtualized using x86virt☆126Updated 2 years ago
- Windbg2ida lets you dump each step in Windbg then shows these steps in IDA☆75Updated last year
- IDA Pro plugin that changes color of call instructions and works with all architectures☆58Updated 6 years ago
- Analyses in IDA/Hex-Rays☆84Updated 2 years ago
- A branch-monitor-based solution for process monitoring.☆133Updated 5 years ago
- IDA plugin to explore and browse tags☆56Updated 6 years ago
- ☆27Updated 7 years ago
- idamagnum is a plugin for integrating MagnumDB requests within IDA☆132Updated 5 years ago
- IDA Plugin which decodes Windows Device I/O control code into DeviceType, FunctionCode, AccessType and MethodType.☆111Updated last year
- PoC for a taint based attack on VMProtect☆110Updated 6 years ago
- IDA Pro resources, scripts, and configurations☆114Updated last month
- ☆181Updated 6 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆74Updated 6 years ago
- A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.☆32Updated last year
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub☆80Updated 13 years ago
- Polymorphic VM and PoliCTF '17 reversing challenge.☆73Updated 10 months ago
- IDA Pro plugin to show functions in a tree view☆115Updated 4 years ago
- ☆72Updated 4 years ago
- IDA script for vmprotect Windows Api address decoder☆51Updated 4 years ago
- kernel pool windbg extension☆84Updated 10 years ago
- qb-sync is an open source tool to add some helpful glue between IDA Pro and Windbg. Its core feature is to dynamically synchronize IDA's …☆120Updated 10 years ago
- Hexrays decompiler plugin that colorizes and filters the decompiler's output based on regular expressions☆136Updated last year
- libemu shim layer and win32 environment for Unicorn Engine☆72Updated 8 years ago
- ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.☆92Updated 6 years ago
- Hex-Rays microcode API plugin for breaking an obfuscating compiler☆84Updated 6 years ago
- An IDA Pro extension for easier (malware) reverse engineering☆115Updated 3 years ago
- This IDAPython script tags subroutines according to their use of imported functions☆73Updated 4 years ago
- ☆226Updated 2 years ago
- IDAPro scripts/plugins☆92Updated 6 years ago
- Elevation of privilege detector based on HyperPlatform☆122Updated 8 years ago