Binary lifter and deobfuscator using remill for x86_64 Windows binaries
☆73Mar 10, 2026Updated last week
Alternatives and similar repositories for omill
Users that are interested in omill are comparing it to the libraries listed below
Sorting:
- C++ Assembler with Built-in Mutation Engine☆30Sep 6, 2025Updated 6 months ago
- Using the peculiar behaviour of the VPGATHER instructions to determine if an address will fault before it is truly accessed. All done in …☆55Dec 30, 2025Updated 2 months ago
- Simple, fast and lightweight Header-Only C++ Assembler Library☆142Aug 13, 2025Updated 7 months ago
- "Bypassing" HVCI via donor PFN swaps to modify read-only code pages. Call chained kernel functions (kCET and SLAT support), modify read-o…☆105Updated this week
- Stealth-focused Intel VT-x hypervisor base (EAC/BE/ACs/AVs).☆79Updated this week
- Easy-to-use IDA plugin for code emulation☆55Nov 29, 2025Updated 3 months ago
- Code-Reuse Exploits detection using Intel Processor Trace☆28May 19, 2018Updated 7 years ago
- Standalone static version of Triton's x86/x64 translator☆32Mar 28, 2025Updated 11 months ago
- Simple template for using Remill on Windows/Linux/macos.☆30Jan 7, 2026Updated 2 months ago
- Dragoon☆13Aug 8, 2017Updated 8 years ago
- A c++20 constexpr x86 assembler☆61Jul 15, 2021Updated 4 years ago
- idax: IDASDK extension libraries☆23Oct 12, 2025Updated 5 months ago
- High performance anti-analysis header for Windows (Kernel & User) and Linux systems☆26Nov 12, 2025Updated 4 months ago
- Tool for obtaining information about PPL processes☆16Feb 12, 2024Updated 2 years ago
- A Windows PE packer for executables (x64) with LZMA compression and with full TLS (Thread Local Storage) support.☆94Oct 27, 2025Updated 4 months ago
- Intel Hardware Trace Library - Kernel Space Componment☆81Oct 17, 2025Updated 5 months ago
- Rewrite and obfuscate code in compiled binaries☆274Dec 13, 2025Updated 3 months ago
- a IDA plugin helps you to manage your IDA Comments☆25Sep 30, 2024Updated last year
- 对Windbg以Exdi模式下调试windows做一些修复☆21Aug 25, 2023Updated 2 years ago
- Control Flow Flattening Deobfuscator for Obfuscator-LLVM as a plugin for IDA Pro.☆91Apr 14, 2025Updated 11 months ago
- A Windows Kernel Driver Emulator base on Unicorn, Kernel Memory Dump and some of native environment☆165Jan 15, 2026Updated 2 months ago
- Compile-time Evaluable SHA3 in C++: Permutation-based Cryptographic Hashing☆16Mar 5, 2026Updated 2 weeks ago
- ☆31Sep 12, 2024Updated last year
- DelphiHelper is a python IDA Pro plugin aiming to help the analysis of x86/x86_64 binaries written in Delphi programming language.☆142Updated this week
- Repository for Windows 10 x64 kernel research, exploitation learning, and reference/supplementary code.☆14Jun 24, 2020Updated 5 years ago
- This master thesis project continuously collects and analyses Microsoft Windows kernel drivers using static and dynamic methods to help s…☆22Nov 4, 2024Updated last year
- The Triton - Dynamic Binary Analysis (DBA) framework - by JonathanSalwan binding for Delphi☆11Oct 25, 2023Updated 2 years ago
- VMProtect 3.5+ dynamic import resolver☆20Jan 5, 2025Updated last year
- Vectored Exception Handling Squared☆31Dec 27, 2025Updated 2 months ago
- A plugin to x64dbg that lets you find out what writes to/accesses particular address☆121Dec 15, 2020Updated 5 years ago
- A custom SentinelOne USB scanner.☆19Mar 26, 2022Updated 3 years ago
- Windows Kernel Security: Memory Integrity Verification with Disk Verification of ntoskrnl.exe☆27Mar 23, 2025Updated 11 months ago
- A small experiment on assigning a processes threads a specific CPU and then blocking it with a high priority thread☆32Sep 24, 2025Updated 5 months ago
- A pure C++17 implementation of WPP software tracing☆19Nov 20, 2020Updated 5 years ago
- 这篇文章的目的是介绍一款实验性项目基于COM命名管道或者Windows Hyper-V虚拟机Vmbus通道实现的运行在uefi上的windbg调试引擎开发心得☆44Jun 16, 2024Updated last year
- Small OBJ/Archive Obfuscation framework☆14Nov 9, 2023Updated 2 years ago
- Minimalistic HTTP(S) client for the NT kernel☆62Dec 1, 2025Updated 3 months ago
- ☆25May 27, 2025Updated 9 months ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆271Aug 31, 2022Updated 3 years ago