iArtorias / x64dbg-VS-Darker

Related projects: ⓘ

• DragonQuestHero / WindowsKernelPrivateSymbolsDump
  Win7内核私有符号结构转储
  ☆64Updated 3 years ago
• DNLINYJ / DetectVMP3
  A POC to detect the exist of VMProtect 3 protection by search feature watermark.
  ☆76Updated 9 months ago
• sonyps5201314 / wow64ext
  Another wow64ext to try to be compatible with WOW64 for all architectures.
  ☆73Updated 3 months ago
• fjqisba / ShareMySig
  共享esig特征文件库
  ☆10Updated 3 years ago
• atom0s / CeAutoAsm-x64dbg
  An x64dbg plugin that allows users to execute Cheat Engine auto assembler scripts within x64dbg.
  ☆74Updated 6 years ago
• nblog / Vm2Import
  fix vmprotect import function used unicorn-engine.
  ☆91Updated last year
• Ahmadmansoor / x64dbgScript
  This is just a x64dbg script system support.
  ☆45Updated 2 years ago
• JayRE114514 / UserComment
  An IDA pro plugin to display user-added comments in disassembly and pseudocode views.
  ☆69Updated last year
• Vicshann / GInjer
  Global DLL injector
  ☆63Updated 3 years ago
• MiroKaku / Musa.Core
  Use ntdll/ntoskrnl to implement Kernel32, Advapi32 and other APIs. It includes user-mode and kernel-mode.
  ☆61Updated 3 weeks ago
• Shhoya / MutantKiller
  VMP Mutation API Fix
  ☆37Updated 2 years ago
• KiFilterFiberContext / VMP3-Disasm
  Experimental disassembler for x86 binaries virtualized by VMProtect 3
  ☆91Updated 2 years ago
• fjqisba / VB-Helper
  用来辅助分析VB程序的IDA插件
  ☆22Updated 3 years ago
• Hipepper / antiVM
  Ida pro plugin. The antiVM aims to quickly identify anti-virtual machine and anti-sandbox behavior. This can speed up malware analysis.
  ☆37Updated 2 years ago
• KNSoft / KNSoft.SlimDetours
  SlimDetours is an improved Windows API hooking library base on Microsoft Detours.
  ☆34Updated last month
• IcEy-999 / Ntoskrnl_Viewer
  可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。
  ☆100Updated 2 years ago
• t0msa / vmp-analyzer
  A tool that aims to aid in finding VM entries in binaries protected by VMProtect 3.5
  ☆23Updated last year
• r3bb1t / vmp_analyzer
  ☆33Updated last year
• kouzhudong / AntiHook
  Enum and Remove Hook in Windows
  ☆31Updated 3 months ago
• ergrelet / Scylla
  Fork of Scylla with additional fixes and Python bindings.
  ☆35Updated 2 months ago
• omgkaka / vmp_runner
  A general solution to simulate execution of virtualized instructions (vmprotect/themida, etc.).
  ☆70Updated 2 years ago
• x64dbg / strmatch
  Simple string matching plugin for x64dbg. Supports UTF8, UTF16 and Local codepages.
  ☆31Updated 7 years ago
• mrexodia / VMProtectTest
  VMProtectTest
  ☆36Updated last year
• lstaroth / AntiXorstr
  IDA Pro plugin AntiXorstr
  ☆87Updated last year
• CKCat / VMProtect-2-Reverse-Engineering
  ☆22Updated 2 years ago
• Oxygen1a1 / DrvMon
  a monitoring windows driver calls kernel api tools
  ☆87Updated 2 months ago
• Chordp / PatternGen
  ☆88Updated 2 years ago
• morsisko / xFindOut
  A plugin to x64dbg that lets you find out what writes to/accesses particular address
  ☆84Updated 3 years ago
• VeroFess / X64SystemCall
  All Nt Syscall and W32k Syscall in one asm, include, and call it!
  ☆57Updated 2 years ago
• 0ffffffffh / yummyPaste
  paste string formatted byte data block into x64dbg easy.
  ☆38Updated 3 years ago