Alternatives and similar repositories for MutantKiller

Users that are interested in MutantKiller are comparing it to the libraries listed below

• nblog / Vm2Import
  fix vmprotect import function used unicorn-engine.
  ☆93Updated 2 years ago
• mibho / x64dbg-vmp-trace
  unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…
  ☆60Updated last year
• sunwm518 / VMProtect-3-5-DEvirt
  VMProtect, VMP, Devirter, 3,5
  ☆107Updated 2 years ago
• KiFilterFiberContext / VMP3-Disasm
  Experimental disassembler for x86 binaries virtualized by VMProtect 3
  ☆95Updated 2 years ago
• helloobaby / Nmi-Callback
  detect hypervisor with Nmi Callback
  ☆38Updated 2 years ago
• Anal-Repair / Vmp3_utils
  ☆36Updated 3 years ago
• BeneficialCode / KReClassEx
  Kernel ReClassEx
  ☆62Updated last year
• Broihon / Symbol-Parser
  Small class to parse debug info from PEs, download their respective PDBs from the Microsoft Public Symbol Server and calculate RVAs of fu…
  ☆44Updated 2 years ago
• 1401199262 / NMIStackWalk
  ☆72Updated 2 years ago
• mzakocs / VirtualizationObfuscatorAnalysis
  A repository of IDA Databases and Binaries used for the analysis of popular commercial virtual-machine obfuscators
  ☆70Updated 2 years ago
• KelvinMsft / NoTruth
  ☆97Updated 7 years ago
• POPFD / HypervisorBase
  A library for intel VT-x hypervisor functionality supporting EPT shadowing.
  ☆50Updated 4 years ago
• layerfsd / phantasm-x86-virtualizer
  Code virtualizer
  ☆24Updated 9 years ago
• EBalloon / MapPage
  Mapping your code on a 0x1000 size page
  ☆72Updated 3 years ago
• rbapat / KernelInjector
  Stealthy Injector that leverages a vulnerable driver and other exploits to remain undetected
  ☆36Updated 6 years ago
• alexcub89 / BEClient2
  ☆36Updated 5 years ago
• samshine / VoyagerWithEPT
  ☆45Updated 2 years ago
• mrexodia / VMProtectTest
  VMProtectTest
  ☆36Updated 2 years ago
• weak1337 / CEDetector
  ☆46Updated 3 years ago
• TygoL / kdmapper-mdl
  ☆50Updated last year
• xu-Wan / HypercallPageHook
  POC Hook of nt!HvcallCodeVa
  ☆52Updated 2 years ago
• auth12 / sysmap
  x64 manual mapper using inline syscalls
  ☆9Updated 3 years ago
• MiroKaku / hde-mirro
  Hacker Disassembler Engine - mirro
  ☆19Updated 2 years ago
• mike1k / ImportCallObfuscator
  Obfuscate calls to imports by patching in stubs
  ☆69Updated 3 years ago
• gmh5225 / FakeEnclave
  A poc that abuses Enclave
  ☆38Updated 2 years ago
• gmh5225 / ida-find-.data-ptr
  A simple ida python script to find .data ptr
  ☆51Updated 2 years ago
• 0xGREG / registry-callbacks
  UM-KM Communication using registry callbacks
  ☆39Updated 5 years ago
• ilovecsad / veh_hide_memory
  ☆69Updated 3 years ago
• rmccrystal / modmap
  Modmap updated to work on Windows 11
  ☆28Updated 3 years ago
• Ahora57 / Unabomber
  Improved VMP Idea(detect anti-anti-debug tools by bug)
  ☆45Updated 2 years ago