garzon / obfacros
obfacros - a set of C++ macros that can be used to obfuscate your c/c++ code, to make executables harder for reverse-engineering.
☆47Updated 5 years ago
Alternatives and similar repositories for obfacros:
Users that are interested in obfacros are comparing it to the libraries listed below
- VMProtectTest☆35Updated 2 years ago
- vmp2.x devirtualization☆70Updated 4 months ago
- IDA Plugin that fills in missing indirect CALL & JMP target information☆123Updated 2 months ago
- Ida pro plugin. The antiVM aims to quickly identify anti-virtual machine and anti-sandbox behavior. This can speed up malware analysis.☆39Updated 2 years ago
- direct systemcalls with a modern c++20 interface.☆42Updated 2 years ago
- Hook NtDeviceIoControlFile with PatchGuard☆105Updated 2 years ago
- Heaven's Gate implementation in C for constructing x64 Win32 API call in x86 WoW64 processes.☆69Updated 3 years ago
- 关于intel和amd指令行为不一样这件事☆61Updated 2 years ago
- Quick check of NT kernel exported&unexported functions/global variable offset NT内核导出以及未导出函数+全局变量偏移速查☆93Updated 2 years ago
- ☆51Updated last year
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆63Updated last year
- All Nt Syscall and W32k Syscall in one asm, include, and call it!☆57Updated 3 years ago
- virtualization obfuscator inspired by juhajong/vm-obfuscator☆57Updated 5 years ago
- a code virtualizer based on angr☆28Updated 2 years ago
- PoC: Rebuild A New Path Back to the Heaven's Gate (HITB 2021)☆103Updated 3 years ago
- UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.☆44Updated 2 years ago
- Rootkit & Anti-rootkit☆39Updated last year
- Analyze tool for windows reverser☆29Updated 2 years ago
- A simple program to obfuscate code written in cpp.☆48Updated 10 months ago
- A general solution to simulate execution of virtualized instructions (vmprotect/themida, etc.).☆73Updated 3 years ago
- ☆21Updated 5 years ago
- fix vmprotect import function used unicorn-engine.☆92Updated last year
- devirtualization vmprotect☆62Updated 2 years ago
- Win7内核私有符号结构转储☆68Updated 3 years ago
- LLVM obfuscation pass, flattening at the basic block's level and turning each basic block into a dispacher and each instruction into a ne…☆46Updated 3 years ago
- Wow64 Heaven's Gate Hook☆28Updated 3 years ago
- Example of reading process memory through kernel special APC☆103Updated last year
- Anti-Debug encyclopedia contains methods used by malware to verify if they are executed under debugging. It includes the description of v…☆53Updated last year
- ☆123Updated 4 years ago
- The tool can be used to eliminate redundant instructions in a basic block.☆80Updated last year