ergrelet / themida-spotter-bnLinks
A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.
☆83Updated last year
Alternatives and similar repositories for themida-spotter-bn
Users that are interested in themida-spotter-bn are comparing it to the libraries listed below
Sorting:
- Lightweight PDB symbol parser and resolver☆26Updated 11 months ago
- WinLicense key extraction via Intel PIN☆104Updated last year
- x86-64 user mode emulation using Zydis☆67Updated 3 weeks ago
- Rust library for lifting raw binary data to LLVM IR☆59Updated 2 months ago
- Yet another IDA Pro/Home plugin for deobfuscating stack strings☆88Updated this week
- devirtualization vmprotect☆62Updated 2 years ago
- A large collection of 32bit and 64bit PE files useful for verifying the correctness of bin2bin transformations☆57Updated last year
- How Meltdown and Spectre haunt Anti-Cheat: DVRT details☆23Updated last year
- Research-focused hypervisor offering advanced tools for debugging, virtual machine introspection, and automation.☆40Updated last month
- Reimplementation of Microsoft's Warbird obuscator☆143Updated last year
- A Binary Ninja plugin to deobfuscate Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.☆33Updated last year
- ☆62Updated 2 years ago
- unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…☆62Updated last year
- An x64dbg plugin which helps make sense of long C++ symbols☆57Updated 2 years ago
- C++ macro for x64 programs that breaks ida hex-rays decompiler tool.☆127Updated last year
- Efficient general mixed boolean-arithmetic (MBA) simplifier☆102Updated last week
- A x86_64 software emulator☆149Updated last month
- Me fockin' pe protector☆45Updated 2 years ago
- All LLVM binaries scrambled with SigBreaker and used to test against llvm-lit☆25Updated 5 months ago
- Code proving a 25-year blind spot in all disassemblers. PoC for Intel x64/x86 “ghost instructions.”☆75Updated this week
- PDB Rewriting Rust Library☆25Updated last year
- Generate a PDB file given the old PDB file and an address mapping☆49Updated 2 months ago
- Symbolic Execution based on lifting amd64 to z3☆28Updated last year
- Python bindings for the Icicle emulator.☆40Updated 5 months ago
- Windows kernel debugger for Linux hosts running Windows under KVM/QEMU☆96Updated 4 months ago
- dynamic binary instrumentation, analysis, and patching framework☆94Updated 2 weeks ago
- A Windows executable (PE) packer (x64) with LZMA compression and with full TLS (Thread Local Storage) support☆78Updated 3 weeks ago
- ☆24Updated 2 months ago
- x86-64 virtualizing obfuscator written in Rust☆78Updated last year
- Binary Ninja plugin that can be used to apply Triton's dead store eliminitation pass on basic blocks or functions.☆64Updated last year