fjqisba / VB-Helper
用来辅助分析VB程序的IDA插件
☆23Updated 4 years ago
Alternatives and similar repositories for VB-Helper:
Users that are interested in VB-Helper are comparing it to the libraries listed below
- Ida pro plugin. The antiVM aims to quickly identify anti-virtual machine and anti-sandbox behavior. This can speed up malware analysis.☆39Updated 2 years ago
- a code virtualizer based on angr☆29Updated 2 years ago
- intel vt-x hypervisor ept☆25Updated 4 years ago
- ☆82Updated 4 years ago
- vmp2.x devirtualization☆70Updated 4 months ago
- x86指令去混淆脚本,基于ida,capstone☆16Updated 3 years ago
- 使用 Intel 虚拟化特性实现应用层HOOK☆60Updated last month
- VMProtectTest☆35Updated 2 years ago
- If you are cracking a mfc program, you may find this useful.☆68Updated 11 years ago
- 跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式…☆66Updated last year
- Vmp1.21加壳机分析笔记☆40Updated 4 years ago
- PEBFake(修改PEB 伪装当前进程路径、参数等)☆51Updated 4 years ago
- hutrace☆24Updated 2 years ago
- Heaven's Gate implementation in C for constructing x64 Win32 API call in x86 WoW64 processes.☆70Updated 3 years ago
- ☆26Updated last year
- Win7内核私有符号结构转储☆68Updated 3 years ago
- Wow64 Heaven's Gate Hook☆28Updated 3 years ago
- ☆57Updated 2 years ago
- ollvm de-obfuscator☆59Updated 3 years ago
- ☆31Updated 4 years ago
- ☆13Updated 4 years ago
- A POC to detect the exist of VMProtect 3 protection by search feature watermark.☆77Updated last year
- Bootkits☆19Updated last year
- ☆21Updated 2 years ago
- a plugin for ida of version 7.2 to help know F5 window codes better☆54Updated 5 years ago
- A general solution to simulate execution of virtualized instructions (vmprotect/themida, etc.).☆73Updated 3 years ago
- EtwHook for win7-win11;☆22Updated 2 years ago
- 一个用来做windows内核hook的框架☆84Updated 11 months ago
- IDA plugin for COM☆47Updated 2 years ago
- ida plugin to parse qt meta data☆73Updated 2 months ago