calware / Deobfuscation
Binary Deobfuscation Series
☆22Updated 5 years ago
Alternatives and similar repositories for Deobfuscation:
Users that are interested in Deobfuscation are comparing it to the libraries listed below
- ☆30Updated 4 years ago
- A library to translate native code for multiple architectures into Tiny Code Generator (TCG) based intermediate representation (IR), base…☆46Updated 4 years ago
- Reversing library based off sleigh from the Ghidra project. Pcode IR access, disassembly, C++17☆14Updated 3 years ago
- Symbolic expression simplifier used across VTIL toolchain. Moved into -->☆24Updated 4 years ago
- Binary Ninja plugin for automating VMProtect analysis☆58Updated 2 years ago
- obfuscation that aims to not stand out☆23Updated 2 years ago
- generate assemblers from disassemblers, 2018 jailbreak security summit talk☆37Updated 4 years ago
- transpile llil to c++ for execution and testing☆42Updated last year
- x86/x64 architecture plugin☆39Updated last year
- A common set of helpers used across VTIL toolchain. Moved into -->☆20Updated 4 years ago
- Collection of obfuscation, tamper-proofing, and watermarking algorithms targeting LLVM IR.☆71Updated 5 years ago
- dr.rer.oec.gadget IDAPython plugin for the Interactive Disassembler <ABANDONED PROJECT>☆66Updated 8 years ago
- A documentation of several Tigress obfuscation passes and an attempt to simplify Mixed Boolean-Arithmetic (MBA) expressions.☆21Updated 3 years ago
- IDA plugin to explore and browse tags☆54Updated 5 years ago
- Course sample for SMT-Based Binary Program Analysis training class☆31Updated 6 years ago
- Build your emulation environment as needed☆65Updated 3 years ago
- Decode machine code into VEX IR and translate into LLVM IR☆26Updated 5 years ago
- unicorn emulator for x64dbg☆32Updated 7 years ago
- Hex-Rays microcode API plugin for breaking an obfuscating compiler☆81Updated 5 years ago
- An Integrity-Check Monitoring Pintool☆56Updated 4 years ago
- ☆40Updated 3 years ago
- Clone of "Compiler-Agnostic Function Detection in Binaries" source code☆86Updated 3 years ago
- PoC for a taint based attack on VMProtect☆107Updated 5 years ago
- ☆13Updated 2 years ago
- Ghidra P-Code emulation and static LLVM lifting in Python☆31Updated 2 years ago
- IDA script for vmprotect Windows Api address decoder☆51Updated 3 years ago
- VMX intrinsics plugin for Hex-Rays decompiler☆70Updated 5 years ago
- ☆51Updated 3 years ago
- MBA deobfuscator via Program Synthesis and Term Rewriting☆48Updated last year
- ☆76Updated 3 years ago