calware / Deobfuscation

Related projects: ⓘ

• vtil-project / VTIL-SymEx
  Symbolic expression simplifier used across VTIL toolchain. Moved into -->
  ☆24Updated 4 years ago
• LL-MM / approxis-groundtruth
  ☆30Updated 4 years ago
• vtil-project / VTIL-Common
  A common set of helpers used across VTIL toolchain. Moved into -->
  ☆20Updated 4 years ago
• LLVMParty / UnsupportedInstructionsLiftingToLLVM
  Using Zydis and LLVM to lift unsupported instructions to LLVM-IR
  ☆24Updated 3 years ago
• jstaursky / hutch
  Reversing library based off sleigh from the Ghidra project. Pcode IR access, disassembly, C++17
  ☆13Updated 2 years ago
• relyze-ltd / LibTCGTranslate
  A library to translate native code for multiple architectures into Tiny Code Generator (TCG) based intermediate representation (IR), base…
  ☆44Updated 4 years ago
• heyitsanthony / vexllvm
  Decode machine code into VEX IR and translate into LLVM IR
  ☆25Updated 5 years ago
• synacktiv / vmx_intrinsics
  VMX intrinsics plugin for Hex-Rays decompiler
  ☆69Updated 4 years ago
• samrussell / vmprotect_binja_plugin
  Binary Ninja plugin for automating VMProtect analysis
  ☆55Updated last year
• yellowbyte / zero-footprint-opaque-predicates
  obfuscation that aims to not stand out
  ☆20Updated 2 years ago
• x64dbg / InterObfu
  Intermediate x86 instruction representation for use in obfuscation/deobfuscation.
  ☆53Updated 7 years ago
• capstone-engine / __capstone0
  ☆39Updated this week
• nlykkei / llvm-ir-obfuscation
  Collection of obfuscation, tamper-proofing, and watermarking algorithms targeting LLVM IR.
  ☆71Updated 4 years ago
• Vector35 / llil_transpiler
  transpile llil to c++ for execution and testing
  ☆41Updated 8 months ago
• archercreat / llvm_stuff
  LLVM based devirtualization PoC’s.
  ☆20Updated 2 years ago
• pgarba / Saturn_Results
  This repo contains the tests and results that were done during the research of SATURN
  ☆36Updated 3 years ago
• redplait / armpatched
  clone of armadillo patched for windows
  ☆45Updated 5 months ago
• GrammaTech / retypd-ghidra-plugin
  Retypd plugin for Ghidra reverse engineering framework from NSA
  ☆22Updated last year
• Vector35 / generate_assembler
  generate assemblers from disassemblers, 2018 jailbreak security summit talk
  ☆37Updated 4 years ago
• fvrmatteo / oracle-synthesis-meets-equality-saturation
  ☆18Updated 2 months ago
• adrianherrera / datAFLow
  ☆28Updated this week
• blaquee / SlothEmu
  unicorn emulator for x64dbg
  ☆30Updated 6 years ago
• fvrmatteo / DeobfuscatorTest
  ☆24Updated 8 years ago
• Air14 / SourceSync
  Set of plugins and library for dynamic pdb generation and synchronisation
  ☆31Updated 4 months ago
• zerotypic / wilhelm
  Alternative API for IDA / Hex-Rays
  ☆72Updated last year
• kukrimate / grr
  AMD SVM hypervisor rootkit proof of concept
  ☆39Updated 11 months ago
• nccgroup / ICPin
  An Integrity-Check Monitoring Pintool
  ☆56Updated 3 years ago
• ergrelet / triton-bn
  Binary Ninja plugin that can be used to apply Triton's dead store eliminitation pass on basic blocks or functions.
  ☆56Updated 2 months ago
• ehennenfent / binja_explain_instruction
  Adds a window to Binary Ninja that explains in simple-ish English what an instruction does
  ☆51Updated last year
• jordan9001 / dobby2
  Build your emulation environment as needed
  ☆64Updated 3 years ago