Alternatives and similar repositories for obfacros

Users that are interested in obfacros are comparing it to the libraries listed below

• therealdreg / ida_bochs_windows
  Helper script for Windows kernel debugging with IDA Pro on native Bochs debugger (including PDB symbols)
  ☆62Updated 2 years ago
• VeroFess / X64SystemCall
  All Nt Syscall and W32k Syscall in one asm, include, and call it!
  ☆58Updated 3 years ago
• VMProtectResearch / vmp2-devirtualization
  vmp2.x devirtualization
  ☆83Updated 11 months ago
• segnolin / Vobfus
  virtualization obfuscator inspired by juhajong/vm-obfuscator
  ☆57Updated 5 years ago
• za233 / AilProtect
  a code virtualizer based on angr
  ☆31Updated 2 years ago
• huoji120 / cpu_duck
  关于intel和amd指令行为不一样这件事
  ☆60Updated 3 years ago
• mrexodia / VMProtectTest
  VMProtectTest
  ☆40Updated 2 years ago
• nblog / Vm2Import
  fix vmprotect import function used unicorn-engine.
  ☆97Updated 2 years ago
• Hipepper / antiVM
  Ida pro plugin. The antiVM aims to quickly identify anti-virtual machine and anti-sandbox behavior. This can speed up malware analysis.
  ☆42Updated 3 years ago
• ssyuqixe / obfCoder
  A simple program to obfuscate code written in cpp.
  ☆51Updated last year
• archercreat / vdk
  vdk is a set of utilities used to help with exploitation of a vulnerable driver.
  ☆42Updated 3 years ago
• codetronik / KernelV
  Rootkit & Anti-rootkit
  ☆41Updated last year
• zhuhuibeishadiao / PatchGuardResearch
  win10 pgContext dynamic dump (btc version)
  ☆107Updated 5 years ago
• bluesadi / Heavens-Gate
  Heaven's Gate implementation in C for constructing x64 Win32 API call in x86 WoW64 processes.
  ☆74Updated 3 years ago
• DownWithUp / DynamicKernelShellcode
  An example of how x64 kernel shellcode can dynamically find and use APIs
  ☆104Updated 5 years ago
• IlayTheVuln / Kernelious-Rootkit
  a dkom rootkit that targets windows x64 systems. the rootkit hooks and edits criticl memory sections in order to hide different resources…
  ☆18Updated 2 years ago
• mathisvickie / CVE-2021-21551
  arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system
  ☆58Updated 3 years ago
• therealdreg / ida_vmware_windows_gdb
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆65Updated 2 years ago
• fIappy / FpVTProject
  intel vt-x hypervisor ept
  ☆24Updated 5 years ago
• kkent030315 / NtSymbol
  Resolve DOS MZ executable symbols at runtime
  ☆95Updated 3 years ago
• CheckPointSW / Anti-Debug-DB
  Anti-Debug encyclopedia contains methods used by malware to verify if they are executed under debugging. It includes the description of v…
  ☆61Updated last year
• LakshmiDesai / LoadPE
  ☆55Updated 8 years ago
• aphage / wow64-gate-hook
  Wow64 Heaven's Gate Hook
  ☆28Updated 4 years ago
• 0ffffffffh / system_call_hook_win10_1903
  This is the P.O.C source for hooking the system calls on Windows 10 (1903) using it's dynamic trace feature weakness
  ☆53Updated 6 years ago
• aaaddress1 / wow64Jit
  Call 32bit NtDLL API directly from WoW64 Layer
  ☆60Updated 4 years ago
• MoePus / SPiCall
  Yet another windows syscall library
  ☆18Updated 5 years ago
• zeze-zeze / WindowsKernelVuln
  ☆61Updated 2 years ago
• g0mxxm / Anti-Obfuscation
  The tool can be used to eliminate redundant instructions in a basic block.
  ☆80Updated 2 years ago
• bl4ckswan / anti-disassembly
  ☆21Updated 8 years ago
• strivexjun / HideDll
  Hide DLL / Hide Module / Hide Dynamic Link Library
  ☆106Updated 6 years ago