Alternatives and similar repositories for KDemu

Users that are interested in KDemu are comparing it to the libraries listed below

• SamuelTulach / unxorer
  Yet another IDA Pro/Home plugin for deobfuscating stack strings
  ☆102Updated last month
• dmaivel / covirt
  An x86-64 code virtualizer for VM based obfuscation
  ☆140Updated 10 months ago
• can1357 / IdaThemer
  🎨 Seamlessly convert your favorite Visual Studio Code themes to IDA Pro themes.
  ☆117Updated last year
• android1337 / brkida
  C++ macro for x64 programs that breaks ida hex-rays decompiler tool.
  ☆129Updated last year
• ThatLing / limba
  compile-time control flow obfuscation using mba
  ☆198Updated 2 years ago
• dariushoule / x64dbg-automate
  ZMQ and Messagepack Powered Remote Automation Plugin for x64dbg
  ☆49Updated last month
• kweatherman / ida_missinglink
  IDA Plugin that fills in missing indirect CALL & JMP target information
  ☆139Updated 9 months ago
• binsnake / KUBERA
  A x86_64 software emulator
  ☆155Updated 2 months ago
• xsh3llsh0ck / Deadwing
  SMM driver/rootkit for platform memory access with R3 <-> R0 <-> R-2 communication.
  ☆93Updated last year
• milankovo / hexinlay
  Inlay hints for hex-rays
  ☆75Updated 6 months ago
• Dump-GUY / IDA_PHNT_TYPES
  Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
  ☆157Updated last year
• sodareverse / TDE
  A devirtualization engine for Themida.
  ☆101Updated last year
• jonomango / chum
  Binary rewriter for 64-bit PE files.
  ☆87Updated last year
• LabGuy94 / Diskjacker
  Runtime Hyper-V Hijacking with DDMA
  ☆64Updated 2 months ago
• therealdreg / ida_vmware_windows_gdb
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆67Updated 2 years ago
• backengineering / vmp2
  VMProtect2 Deobfuscation Tooling
  ☆55Updated 3 weeks ago
• Fatmike-GH / Fatpack
  A Windows PE packer for executables (x64) with LZMA compression and with full TLS (Thread Local Storage) support.
  ☆88Updated last week
• sh4m2hwz / devirt_vmp
  devirtualization vmprotect
  ☆62Updated 2 years ago
• NeoMaster831 / kurasagi
  Windows 11 24H2-25H2 Runtime PatchGuard Bypass
  ☆209Updated 3 weeks ago
• mrexodia / VMProtectTest
  VMProtectTest
  ☆40Updated 2 years ago
• gmh5225 / titan-1
  Titan is a VMProtect devirtualizer
  ☆53Updated 2 years ago
• brew02 / BudgetEPT
  Create stealthy, inline, EPT-like hooks using SMAP and SMEP
  ☆59Updated last year
• AzzOnFire / emuit
  Easy-to-use IDA plugin for code emulation
  ☆43Updated last month
• void-stack / Hypervisor-Detection
  Detects virtual machines and malware analysis environments
  ☆139Updated 3 years ago
• badhive / stitch
  Rewrite and obfuscate code in compiled binaries
  ☆263Updated last week
• mibho / x64dbg-vmp-trace
  unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…
  ☆63Updated last year
• zer0condition / Demystifying-PatchGuard
  Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…
  ☆129Updated 2 years ago
• momo5502 / ept-hook-detection
  🪝 Various EPT hook detection approaches
  ☆134Updated 3 months ago
• KiFilterFiberContext / microsoft-warbird
  Reimplementation of Microsoft's Warbird obuscator
  ☆148Updated last year
• zeze-zeze / WindowsKernelVuln
  ☆61Updated 2 years ago