dmaivel / covirtLinks
An x86-64 code virtualizer for VM based obfuscation
☆126Updated 7 months ago
Alternatives and similar repositories for covirt
Users that are interested in covirt are comparing it to the libraries listed below
Sorting:
- Rewrite and obfuscate code in compiled binaries☆208Updated last week
- Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…☆127Updated 2 years ago
- C++ macro for x64 programs that breaks ida hex-rays decompiler tool.☆124Updated last year
- compile-time control flow obfuscation using mba☆189Updated 2 years ago
- Detects virtual machines and malware analysis environments☆133Updated 2 years ago
- Obfusk8: lightweight Obfuscation library based on C++17 / Header Only for windows binaries☆317Updated 2 months ago
- PoC Anti-Rootkit/Anti-Cheat Driver.☆211Updated 3 months ago
- Create stealthy, inline, EPT-like hooks using SMAP and SMEP☆56Updated 9 months ago
- Load dll with undocumented functions and debug symbols☆47Updated last year
- An x86-64 Code Virtualizer☆274Updated 10 months ago
- A x86_64 software emulator☆135Updated last week
- DSE & PG bypass via BYOVD attack☆55Updated 3 weeks ago
- ZMQ and Messagepack Powered Remote Automation Plugin for x64dbg☆38Updated last week
- A Windows executable (PE) packer (x64) with LZMA compression and with full TLS (Thread Local Storage) support☆74Updated last month
- spoof return address☆75Updated 2 years ago
- SMM driver/rootkit for platform memory access with R3 <-> R0 <-> R-2 communication.☆90Updated 9 months ago
- windows rootkit☆61Updated last year
- Hooking Windows' exception dispatcher to protect process's PML4☆188Updated 6 months ago
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆146Updated 11 months ago
- Simple, fast and lightweight Header-Only C++ Assembler Library☆89Updated last month
- Binary rewriter for 64-bit PE files.☆83Updated last year
- ntoskrnl .data hooks for UM-KM communication☆50Updated last year
- Exploit for eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W☆44Updated last month
- Exploit vulnerabilities in NeacSafe64.sys to achieve privilege escalation and kernel-mode shellcode execution☆21Updated last month
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆210Updated 9 months ago
- PoC kernel to usermode injection☆85Updated last year
- Makes IDA (most versions) to crash upon opening it.☆97Updated 11 months ago
- ☆122Updated last year
- Finding Truth in the Shadows☆110Updated 2 years ago
- Windows PDB parser for kernel-mode environment.☆99Updated last month