VM devirtualization PoC based on AsmJit and llvm
☆123Sep 14, 2021Updated 4 years ago
Alternatives and similar repositories for vm_jit
Users that are interested in vm_jit are comparing it to the libraries listed below
Sorting:
- LLVM based devirtualization PoC’s.☆21Dec 11, 2021Updated 4 years ago
- Experimental disassembler for x86 binaries virtualized by VMProtect 3☆98Aug 27, 2022Updated 3 years ago
- Deobfuscation via optimization with usage of LLVM IR and parsing assembly.☆779Mar 8, 2026Updated last week
- Assets for the "Tickling VMProtect with LLVM" blog post.☆167Sep 16, 2021Updated 4 years ago
- A library for intel VT-x hypervisor functionality supporting EPT shadowing.☆51Mar 11, 2021Updated 5 years ago
- A VMP to VTIL lifter.☆446May 20, 2021Updated 4 years ago
- Self-hosting binary instrumentation framework for security research☆12Apr 10, 2023Updated 2 years ago
- Collection of obfuscation, tamper-proofing, and watermarking algorithms targeting LLVM IR.☆76Nov 12, 2019Updated 6 years ago
- Deobfuscation of Semi-Linear Mixed Boolean-Arithmetic Expressions☆81Jan 24, 2026Updated last month
- PoC for a taint based attack on VMProtect☆123Jul 3, 2019Updated 6 years ago
- Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.☆1,399Jun 11, 2022Updated 3 years ago
- A simple x86_64 AMD-v hypervisor type-2 Programmed with C++, with soon to be added syscall hooks. [W.I.P]☆104Aug 3, 2023Updated 2 years ago
- Universal x86/x64 VMProtect 2.0-3.X Import fixer☆21Dec 29, 2021Updated 4 years ago
- An x86-64 Code Virtualizer☆311Sep 26, 2024Updated last year
- Simple Demo of using Windows Hypervisor Platform☆29Jul 14, 2025Updated 8 months ago
- Easy Anti PatchGuard☆223Apr 9, 2021Updated 4 years ago
- c++ implementation of windows heavens gate☆71Feb 12, 2021Updated 5 years ago
- VT-based PCI device monitor (SPI)☆158Oct 29, 2020Updated 5 years ago
- LLVM based static binary analysis framework☆303Apr 2, 2025Updated 11 months ago
- ☆426Jan 1, 2025Updated last year
- Open Anti Cheat☆27Jul 16, 2022Updated 3 years ago
- Kernel driver for detecting Intel VT-x hypervisors.☆202Jul 11, 2023Updated 2 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆241Nov 6, 2019Updated 6 years ago
- Analyze patches in a process☆260Jul 28, 2021Updated 4 years ago
- vmp2.x devirtualization☆90Nov 3, 2024Updated last year
- ☆20Oct 14, 2024Updated last year
- Native code virtualizer for x64 binaries☆520Dec 20, 2024Updated last year
- devirtualization vmprotect☆65Mar 11, 2023Updated 3 years ago
- Load dll with undocumented functions and debug symbols☆47Jul 20, 2024Updated last year
- Tutorial on solving a VM based CrackMe.☆66Jul 23, 2020Updated 5 years ago
- A simple example how to decrypt kernel debugger data block☆32Feb 8, 2021Updated 5 years ago
- Lift machine code to performant LLVM IR☆497Jun 17, 2024Updated last year
- ☆66Apr 12, 2023Updated 2 years ago
- obfuscation that aims to not stand out☆24Mar 27, 2022Updated 3 years ago
- Titan is a VMProtect devirtualizer☆121Mar 6, 2024Updated 2 years ago
- Rust library for lifting raw binary data to LLVM IR☆64Jul 18, 2025Updated 8 months ago
- ☆42Jan 7, 2025Updated last year
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆271Aug 31, 2022Updated 3 years ago
- Code Deobfuscator x86_32/64☆52Aug 16, 2022Updated 3 years ago