Alternatives and similar repositories for hxemu

Users that are interested in hxemu are comparing it to the libraries listed below

• NudistBeaaach / Chained-CFG-obfuscation-pass
  LLVM obfuscation pass, flattening at the basic block's level and turning each basic block into a dispacher and each instruction into a ne…
  ☆47Updated 4 years ago
• therealdreg / ida_bochs_windows
  Helper script for Windows kernel debugging with IDA Pro on native Bochs debugger (including PDB symbols)
  ☆62Updated 2 years ago
• fvrmatteo / oracle-synthesis-meets-equality-saturation
  ☆25Updated 3 months ago
• za233 / AilProtect
  a code virtualizer based on angr
  ☆30Updated 2 years ago
• samrussell / vmprotect_binja_plugin
  Binary Ninja plugin for automating VMProtect analysis
  ☆62Updated 2 years ago
• therealdreg / ida_vmware_windows_gdb
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆67Updated 2 years ago
• ioncodes / rapid-kdbg-hyperv
  ☆15Updated 2 years ago
• bl4ckswan / anti-disassembly
  ☆21Updated 8 years ago
• OALabs / ZVM
  Disassembler for Zeus VM custom instruction set
  ☆29Updated last year
• Colton1skees / WinTTD
  Reverse engineered API for Microsoft's Time Travel Debugger
  ☆35Updated last year
• segnolin / Vobfus
  virtualization obfuscator inspired by juhajong/vm-obfuscator
  ☆57Updated 5 years ago
• DownWithUp / WHPHook
  Simple DLL and client app that work together to hook all the functions in WinHvPlatform.dll in order to provide logging and introspection…
  ☆18Updated 3 years ago
• Slattz / ObfusC
  Implementation of a LLVM Compiler Plugin for C++ Obfuscation
  ☆43Updated 2 years ago
• killvxk / awesome-bootkit
  Bootkits
  ☆18Updated 2 years ago
• eset / wslink-vm-analyzer
  WslinkVMAnalyzer is a tool to facilitate analysis of code protected by a virtual machine featured in Wslink malware
  ☆46Updated 3 years ago
• ergrelet / triton-bn
  Binary Ninja plugin that can be used to apply Triton's dead store eliminitation pass on basic blocks or functions.
  ☆64Updated last year
• Rupan / idapin
  A debugger backend for IDA Pro built on top of of Intel’s PIN framework
  ☆33Updated last year
• mmert11 / binaryshield-devirtualizer
  llvm powered deobfuscation of a vm-based protection
  ☆41Updated 4 months ago
• expend20 / llvm-ob-passes
  ☆19Updated 10 months ago
• long123king / dk
  dk is a WinDbg extenion for dumping memory data in meaningful and organized ways, it is an enhancement of my previous tokenext project.
  ☆24Updated 2 years ago
• VMProtectResearch / vmp2-devirtualization
  vmp2.x devirtualization
  ☆78Updated 10 months ago
• Rantanen / ghidra-minidump-loader
  Windows Minidump loader for Ghidra
  ☆29Updated 2 years ago
• sterrasec / genpatch
  genpatch is IDA plugin that generates a python script for patching binary
  ☆36Updated last year
• vmware-archive / HexRaysDeob
  Hex-Rays microcode API plugin for breaking an obfuscating compiler
  ☆84Updated 6 years ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆73Updated 2 years ago
• therealdreg / pdbdump_bochs
  Dump PDB Symbols including support for Bochs Debugging Format (with wine support)
  ☆15Updated 2 years ago
• samrussell / obfus
  Playing with LLVM passes
  ☆38Updated 2 years ago
• jxy-s / vfdynf
  Application Verifier Dynamic Fault Injection
  ☆39Updated last week
• tum-i4 / dta-vs-osc
  Dynamic Taint Analysis versus Obfuscated Self-Checking
  ☆16Updated 4 years ago
• Nitr0-G / Rework-part-of-z3-proving
  This is the PoC of a dynamic lifter and deobfuscator with collecting trace.
  ☆35Updated last year