Alternatives and similar repositories for MutantKiller

Users that are interested in MutantKiller are comparing it to the libraries listed below

• KiFilterFiberContext / VMP3-Disasm
  Experimental disassembler for x86 binaries virtualized by VMProtect 3
  ☆96Updated 3 years ago
• nblog / Vm2Import
  fix vmprotect import function used unicorn-engine.
  ☆97Updated 2 years ago
• sunwm518 / VMProtect-3-5-DEvirt
  VMProtect, VMP, Devirter, 3,5
  ☆107Updated 2 years ago
• mzakocs / VirtualizationObfuscatorAnalysis
  A repository of IDA Databases and Binaries used for the analysis of popular commercial virtual-machine obfuscators
  ☆70Updated 3 years ago
• mibho / x64dbg-vmp-trace
  unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…
  ☆62Updated last year
• BeneficialCode / KReClassEx
  Kernel ReClassEx
  ☆64Updated last year
• helloobaby / Nmi-Callback
  detect hypervisor with Nmi Callback
  ☆40Updated 3 years ago
• skadro-official / PE-Dump-Fixer
  PE-Dump-Fixer
  ☆111Updated 5 years ago
• omgkaka / vmp_runner
  A general solution to simulate execution of virtualized instructions (vmprotect/themida, etc.).
  ☆74Updated 3 years ago
• mike1k / ImportCallObfuscator
  Obfuscate calls to imports by patching in stubs
  ☆71Updated 4 years ago
• sodareverse / TDE
  A devirtualization engine for Themida.
  ☆101Updated last year
• SmoLL-iCe / VExDebugger
  A debugger library using VEH.
  ☆64Updated last year
• KelvinMsft / NoTruth
  ☆98Updated 8 years ago
• POPFD / HypervisorBase
  A library for intel VT-x hypervisor functionality supporting EPT shadowing.
  ☆51Updated 4 years ago
• Sinclairq / tp-emulator
  A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe
  ☆72Updated 2 years ago
• crvvdev / intraceptor
  Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.
  ☆30Updated 3 years ago
• lennyRBLX / manual_exception_handling
  Handling C++ & __try exceptions without the need of built-in handlers.
  ☆73Updated 4 years ago
• Darkratos / Spoofed-Call
  A wrapper class to hide the original calling address of a function
  ☆56Updated 5 years ago
• Broihon / Symbol-Parser
  Small class to parse debug info from PEs, download their respective PDBs from the Microsoft Public Symbol Server and calculate RVAs of fu…
  ☆44Updated 2 years ago
• utoni / KMemDriver
  A Windows Memory driver for game hacking purposes. Supports manual mapping with BlackBone and PastDSE.
  ☆42Updated 4 years ago
• Ahora57 / Unabomber
  Improved VMP Idea(detect anti-anti-debug tools by bug)
  ☆46Updated 2 years ago
• archercreat / vm_jit
  VM devirtualization PoC based on AsmJit and llvm
  ☆112Updated 4 years ago
• KelvinMsft / PerfMon
  first commit
  ☆62Updated 4 years ago
• 1401199262 / NMIStackWalk
  ☆72Updated 3 years ago
• miketestz / ScyllaHide_VMPHeavensgateBypass
  Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide
  ☆23Updated 2 years ago
• ekknod / KiSystemStartupMeme
  Custom KiSystemStartup, can be used to modificate kernel before boot.
  ☆52Updated 3 years ago
• Vicshann / GInjer
  Global DLL injector
  ☆68Updated 4 years ago
• mrexodia / VMProtectTest
  VMProtectTest
  ☆40Updated 2 years ago
• Anal-Repair / Vmp3_utils
  ☆36Updated 3 years ago
• Ahmadmansoor / x64dbgScript
  This is just a x64dbg script system support.
  ☆47Updated 3 years ago