Alternatives and similar repositories for Anti-Debug-examples-Windows

Users that are interested in Anti-Debug-examples-Windows are comparing it to the libraries listed below

• mzakocs / VirtualizationObfuscatorAnalysis
  A repository of IDA Databases and Binaries used for the analysis of popular commercial virtual-machine obfuscators
  ☆71Updated 3 years ago
• archercreat / vdk
  vdk is a set of utilities used to help with exploitation of a vulnerable driver.
  ☆44Updated 3 years ago
• mike1k / solving-vm-crackme-1
  Tutorial on solving a VM based CrackMe.
  ☆66Updated 5 years ago
• mibho / x64dbg-vmp-trace
  unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…
  ☆67Updated last year
• sodareverse / TDE
  A devirtualization engine for Themida.
  ☆105Updated last year
• generic-trash / themdem
  ☆34Updated 2 years ago
• nblog / Vm2Import
  fix vmprotect import function used unicorn-engine.
  ☆98Updated 2 years ago
• therealdreg / ida_vmware_windows_gdb
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆67Updated 2 years ago
• t3ssellate / unmapper
  An automatic tool for fixing dumped PE files
  ☆42Updated 5 years ago
• jonatan1024 / CpuidSpoofer
  x64dbg plugin for simple spoofing of CPUID instruction behavior
  ☆100Updated 2 years ago
• archercreat / vm_jit
  VM devirtualization PoC based on AsmJit and llvm
  ☆123Updated 4 years ago
• ergrelet / triton-bn
  Binary Ninja plugin that can be used to apply Triton's dead store eliminitation pass on basic blocks or functions.
  ☆64Updated last year
• 0dayatday0 / BattleFN-cheat-analysis
  ☆46Updated 4 years ago
• mrexodia / driver_unpacking
  Ghetto user mode emulation of Windows kernel drivers.
  ☆158Updated last year
• mike1k / pepp
  C++ library for parsing and manipulating PE files statically and dynamically.
  ☆89Updated 2 years ago
• Nitr0-G / Rework-part-of-z3-proving
  This is the PoC of a dynamic lifter and deobfuscator with collecting trace.
  ☆36Updated 2 years ago
• sh4m2hwz / devirt_vmp
  devirtualization vmprotect
  ☆65Updated 2 years ago
• kweatherman / ida_missinglink
  IDA Plugin that fills in missing indirect CALL & JMP target information
  ☆141Updated last year
• mrexodia / EfiCMake
  CMake template for a basic EFI application/bootkit. This library is header-only, there is no EDK2 runtime!).
  ☆79Updated 3 years ago
• mrexodia / VMProtectTest
  VMProtectTest
  ☆40Updated 2 years ago
• archercreat / ida_names
  IDA-names automatically renames pseudocode windows with the current function name.
  ☆60Updated 3 years ago
• Nitr0-G / SVM-Hypervisor
  This is a ring -1 header framework in order to simplify the creation of hypervisors on SVM
  ☆27Updated 2 years ago
• kkent030315 / NtSymbol
  Resolve DOS MZ executable symbols at runtime
  ☆96Updated 4 years ago
• vtil-project / VTIL-BinaryNinja
  ☆93Updated 5 years ago
• pgarba / SiMBA-
  Port of MBA Solver SiMBA to C/C++ (MBA deobfuscation in real world applications)
  ☆106Updated 2 months ago
• m-odern / focus-theme-for-ida-pro-7.6
  ☆30Updated 4 years ago
• tandasat / kraft_dinner
  Tool to dump UEFI runtime drivers implementing runtime services for Windows
  ☆111Updated 5 years ago
• david-lazar / IDAPatternSearch
  IDAPatternSearch adds a capability of finding functions according to bit-patterns into the well-known IDA Pro disassembler based on Ghidr…
  ☆66Updated 4 years ago
• nlykkei / llvm-ir-obfuscation
  Collection of obfuscation, tamper-proofing, and watermarking algorithms targeting LLVM IR.
  ☆75Updated 6 years ago
• layerfsd / phantasm-x86-virtualizer
  Code virtualizer
  ☆26Updated 9 years ago