Alternatives and similar repositories for anti-disassembly

Users that are interested in anti-disassembly are comparing it to the libraries listed below

• segnolin / Vobfus
  virtualization obfuscator inspired by juhajong/vm-obfuscator
  ☆58Updated 6 years ago
• Anal-Repair / Vmp3_utils
  ☆36Updated 3 years ago
• SinaKarvandi / Pinitor
  An API Monitor based on Instrumentation
  ☆44Updated 8 years ago
• kernweak / Syscall-Monitor
  大表哥的Syscall-Monitor
  ☆34Updated 6 years ago
• aphage / wow64-gate-hook
  Wow64 Heaven's Gate Hook
  ☆29Updated 4 years ago
• ajkhoury / Windbg2Struct
  Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure
  ☆37Updated last year
• therealdreg / ida_bochs_windows
  Helper script for Windows kernel debugging with IDA Pro on native Bochs debugger (including PDB symbols)
  ☆61Updated 2 years ago
• hsheep / vmpanalysis
  VMProtect analysis script
  ☆56Updated 5 years ago
• chkpizza / runtime
  VEH Redirect & VEH Debugger
  ☆23Updated 5 years ago
• SinaKarvandi / x64-Driver-Inline-Assembly
  This is a simple driver with x64 inline assembly
  ☆57Updated 5 years ago
• ioncodes / rapid-kdbg-hyperv
  ☆15Updated 2 years ago
• JKornev / cfgdump
  Windbg extension that allows you analyze Control Flow Guard map
  ☆38Updated 4 years ago
• 9176324 / Daat
  a simple intel vt code both support x86 & x64. PatchGuard monitor.
  ☆77Updated 4 years ago
• Cr4sh / PTBypass-PoC
  Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.
  ☆79Updated 15 years ago
• VMProtectResearch / vmp2-devirtualization
  vmp2.x devirtualization
  ☆90Updated last year
• yardenshafir / DpcWait
  Driver demonstrating how to register a DPC to asynchronously wait on an object
  ☆50Updated 5 years ago
• anzelesnik / MySyscall
  Example of hijacking system calls via function pointer tables
  ☆31Updated 4 years ago
• therealdreg / ida_vmware_windows_gdb
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆67Updated 2 years ago
• XShar / Super_Hide_String
  Скрытие строки от отладчиков и декомпиляторов
  ☆51Updated 6 years ago
• killvxk / awesome-bootkit
  Bootkits
  ☆19Updated 2 years ago
• xiaobfly / DisPg
  ☆21Updated 7 years ago
• cxxrev0to1dev / nb_obfuscator
  win32/x64 obfuscate framework
  ☆33Updated 6 years ago
• nblog / Vm2Import
  fix vmprotect import function used unicorn-engine.
  ☆98Updated 2 years ago
• yardenshafir / KernelDataStructureFinder
  Driver and WinDBG scripts to dump information about all resources and lookaside lists
  ☆66Updated 5 years ago
• ek0 / hxemu
  Triton based symbolic emulator
  ☆16Updated 3 years ago
• codetronik / KernelV
  Rootkit & Anti-rootkit
  ☆41Updated 2 years ago
• kyREcon / IsKernelDebuggerPresent
  Detects if a Kernel mode debugger is active by reading the value of KUSER_SHARED_DATA.KdDebuggerEnabled. It is a high level and portable …
  ☆23Updated 8 years ago
• za233 / AilProtect
  a code virtualizer based on angr
  ☆32Updated 3 years ago
• blaquee / SlothEmu
  unicorn emulator for x64dbg
  ☆34Updated 7 years ago
• DProvinciani / pt-detector
  Code-Reuse Exploits detection using Intel Processor Trace
  ☆28Updated 7 years ago