Alternatives and similar repositories for anti-disassembly

Users that are interested in anti-disassembly are comparing it to the libraries listed below

• segnolin / Vobfus
  virtualization obfuscator inspired by juhajong/vm-obfuscator
  ☆57Updated 5 years ago
• Anal-Repair / Vmp3_utils
  ☆36Updated 3 years ago
• kernweak / Syscall-Monitor
  大表哥的Syscall-Monitor
  ☆34Updated 6 years ago
• aphage / wow64-gate-hook
  Wow64 Heaven's Gate Hook
  ☆29Updated 4 years ago
• hsheep / vmpanalysis
  VMProtect analysis script
  ☆54Updated 5 years ago
• SinaKarvandi / Pinitor
  An API Monitor based on Instrumentation
  ☆44Updated 7 years ago
• VMProtectResearch / vmp2-devirtualization
  vmp2.x devirtualization
  ☆84Updated last year
• 9176324 / Daat
  a simple intel vt code both support x86 & x64. PatchGuard monitor.
  ☆76Updated 4 years ago
• kyREcon / IsKernelDebuggerPresent
  Detects if a Kernel mode debugger is active by reading the value of KUSER_SHARED_DATA.KdDebuggerEnabled. It is a high level and portable …
  ☆23Updated 8 years ago
• ek0 / hxemu
  Triton based symbolic emulator
  ☆16Updated 3 years ago
• za233 / AilProtect
  a code virtualizer based on angr
  ☆32Updated 2 years ago
• xiaobfly / DisPg
  ☆21Updated 7 years ago
• 0xbadc0de1 / VmP_DBG
  This is a VmProtect integrated debugger, that will essentially allow you to disasm and debug vmp partially virtualized functions at the v…
  ☆47Updated 9 years ago
• Rupan / idapin
  A debugger backend for IDA Pro built on top of of Intel’s PIN framework
  ☆35Updated last year
• JKornev / cfgdump
  Windbg extension that allows you analyze Control Flow Guard map
  ☆36Updated 4 years ago
• MoePus / SPiCall
  Yet another windows syscall library
  ☆18Updated 5 years ago
• chkpizza / runtime
  VEH Redirect & VEH Debugger
  ☆23Updated 5 years ago
• Cr4sh / PTBypass-PoC
  Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.
  ☆78Updated 14 years ago
• cxxrev0to1dev / nb_obfuscator
  win32/x64 obfuscate framework
  ☆33Updated 6 years ago
• Fyyre / directntapi
  DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10
  ☆53Updated last year
• yuvatia / Win10GdiExploitation
  Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.
  ☆24Updated 7 years ago
• DeDf / WProtect
  ☆39Updated 6 years ago
• ajkhoury / Windbg2Struct
  Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure
  ☆36Updated last year
• therealdreg / ida_bochs_windows
  Helper script for Windows kernel debugging with IDA Pro on native Bochs debugger (including PDB symbols)
  ☆61Updated 2 years ago
• cow0o0 / VM
  vm -- code interpreter
  ☆25Updated 6 years ago
• SinaKarvandi / x64-Driver-Inline-Assembly
  This is a simple driver with x64 inline assembly
  ☆57Updated 5 years ago
• jnastarot / soul_eater
  it can extract functions from .dll, .exe, .sys and it be work! :)
  ☆39Updated 6 years ago
• buzzer-re / x64dbg-ASLR-Removal
  Plugin to patch and remove ASLR from PE files on x64dbg
  ☆39Updated 3 years ago
• codetronik / KernelV
  Rootkit & Anti-rootkit
  ☆41Updated last year
• nblog / Vm2Import
  fix vmprotect import function used unicorn-engine.
  ☆97Updated 2 years ago