backengineering / vmp2Links
VMProtect2 Deobfuscation Tooling
☆65Updated 2 weeks ago
Alternatives and similar repositories for vmp2
Users that are interested in vmp2 are comparing it to the libraries listed below
Sorting:
- Yet another IDA Pro/Home plugin for deobfuscating stack strings☆105Updated last month
- x86-64 user mode emulation using Zydis☆71Updated 2 months ago
- unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…☆63Updated last year
- ☆61Updated 2 years ago
- Improved VMP Idea(detect anti-anti-debug tools by bug)☆46Updated 2 years ago
- A devirtualization engine for Themida.☆101Updated last year
- A x86_64 software emulator☆156Updated 3 months ago
- Symbolic Execution based on lifting amd64 to z3☆28Updated last year
- 🔬 IDA plugin to find patched memory☆73Updated last month
- Kernel ReClassEx☆64Updated 2 years ago
- A repository of IDA Databases and Binaries used for the analysis of popular commercial virtual-machine obfuscators☆69Updated 3 years ago
- C++ macro for x64 programs that breaks ida hex-rays decompiler tool.☆130Updated last year
- Runtime Hyper-V Hijacking with DDMA☆64Updated 3 months ago
- A fast Windows emulator + debugger for reverse engineering. Runs any executable in debug mode, disassembles with Zydis, emulates instruct…☆162Updated last week
- Documents the reverse engineering and partial disabling of Steam's CEG anti-tamper protections in T6SP, while preserving its anti-piracy …☆54Updated 6 months ago
- Binary rewriter for 64-bit PE files.☆88Updated last year
- llvm powered deobfuscation of a vm-based protection☆43Updated 7 months ago
- An x86-64 code virtualizer for VM based obfuscation☆143Updated 11 months ago
- Cross-Platform Framework for High-Speed Memory Pattern Scanning with Multithreading, SIMD Support, and Alternative STL ETL Integration☆43Updated last month
- ☆84Updated last month
- A debugger library using VEH.☆65Updated last year
- Me fockin' pe protector☆45Updated 3 years ago
- Native opaque predicate cleaner plugin for Binary Ninja☆45Updated this week
- Header-only C++ library for producing PE files.☆35Updated 2 years ago
- Find out how to bypass HVCI (or not). My own research on Microsoft Warbird (specifically in clipsp.sys)☆70Updated last month
- WinLicense key extraction via Intel PIN☆107Updated last year
- VM devirtualization PoC based on AsmJit and llvm☆118Updated 4 years ago
- Load dll with undocumented functions and debug symbols☆47Updated last year
- A Binary Ninja plugin to deobfuscate Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.☆33Updated last year
- This is the PoC of a dynamic lifter and deobfuscator with collecting trace.☆36Updated 2 years ago