Alternatives and similar repositories for MutantKiller:

Users that are interested in MutantKiller are comparing it to the libraries listed below

• mibho / x64dbg-vmp-trace
  unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…
  ☆58Updated last year
• nblog / Vm2Import
  fix vmprotect import function used unicorn-engine.
  ☆92Updated 2 years ago
• sunwm518 / VMProtect-3-5-DEvirt
  VMProtect, VMP, Devirter, 3,5
  ☆106Updated 2 years ago
• Broihon / Symbol-Parser
  Small class to parse debug info from PEs, download their respective PDBs from the Microsoft Public Symbol Server and calculate RVAs of fu…
  ☆44Updated 2 years ago
• BeneficialCode / KReClassEx
  Kernel ReClassEx
  ☆61Updated last year
• mzakocs / VirtualizationObfuscatorAnalysis
  A repository of IDA Databases and Binaries used for the analysis of popular commercial virtual-machine obfuscators
  ☆70Updated 2 years ago
• gmh5225 / ida-find-.data-ptr
  A simple ida python script to find .data ptr
  ☆50Updated last year
• 1401199262 / NMIStackWalk
  ☆68Updated 2 years ago
• POPFD / HypervisorBase
  A library for intel VT-x hypervisor functionality supporting EPT shadowing.
  ☆49Updated 4 years ago
• rmccrystal / modmap
  Modmap updated to work on Windows 11
  ☆28Updated 3 years ago
• Ahora57 / Unabomber
  Improved VMP Idea(detect anti-anti-debug tools by bug)
  ☆42Updated last year
• helloobaby / Nmi-Callback
  detect hypervisor with Nmi Callback
  ☆34Updated 2 years ago
• Darkratos / Spoofed-Call
  A wrapper class to hide the original calling address of a function
  ☆57Updated 4 years ago
• TygoL / kdmapper-mdl
  ☆49Updated last year
• Vicshann / GInjer
  Global DLL injector
  ☆66Updated 3 years ago
• samshine / VoyagerWithEPT
  ☆34Updated 2 years ago
• 0xGREG / registry-callbacks
  UM-KM Communication using registry callbacks
  ☆39Updated 4 years ago
• KelvinMsft / NoTruth
  ☆96Updated 7 years ago
• sodareverse / TDE
  A devirtualization engine for Themida.
  ☆100Updated last year
• auth12 / sysmap
  x64 manual mapper using inline syscalls
  ☆9Updated 3 years ago
• mike1k / ImportCallObfuscator
  Obfuscate calls to imports by patching in stubs
  ☆67Updated 3 years ago
• charliewolfe / PointerGuard
  PointerGuard is a proof-of-concept tool used to create 'guarded' pointers which disguise pointer addresses, monitor reads/writes, and pre…
  ☆52Updated 2 years ago
• keowu / birosca
  A Dynamic Study Vmprotect 1.x-1.9X Unpacking Toolkit, Recovery OEP, FIX PE, IAT and bypass protection with custom Loader and interceptor …
  ☆31Updated last year
• SamuelTulach / ida-unity-pdb-downloader
  Simple IDA Pro plugin to download Unity debug symbols from their symbol server
  ☆61Updated last year
• WolfyZ99 / Kernel-AntiCheat
  ☆68Updated 3 years ago
• EBalloon / MapPage
  Mapping your code on a 0x1000 size page
  ☆72Updated 2 years ago
• dslee2022 / VMProtect-CRC-Bypass
  PoC code for IsValidImageCRC()
  ☆16Updated last year
• Anal-Repair / Vmp3_utils
  ☆36Updated 2 years ago
• gmh5225 / FakeEnclave
  A poc that abuses Enclave
  ☆38Updated 2 years ago
• miketestz / ScyllaHide_VMPHeavensgateBypass
  Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide
  ☆20Updated last year