jstrosch / XOR-Decode-Strings-IDA-Plugin
This IDA Python plugin is intended to get you started creating IDA Plugins with Python, recognize the importance of deobfuscating strings and work on translating assembly to a higher-level language (i.e. Python).
☆29Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for XOR-Decode-Strings-IDA-Plugin
- IDA Pro plugin that displays all comments in a database☆63Updated 3 months ago
- A deobfuscation plugin for IDA☆59Updated 2 years ago
- User-friendly reference finder in IDA☆38Updated last year
- Simple x64dbg plugin to save a full memory dump☆49Updated 2 years ago
- IDAPatternSearch adds a capability of finding functions according to bit-patterns into the well-known IDA Pro disassembler based on Ghidr…☆62Updated 3 years ago
- A debugger backend for IDA Pro built on top of of Intel’s PIN framework☆30Updated 9 months ago
- Tool that automates some useful structure routines in IDA PRO☆74Updated 8 months ago
- Obfuscat is a tool and framework for obfuscation with predictable size and runtime overhead.☆34Updated 10 months ago
- ☆19Updated 7 years ago
- IDA Python deobfuscation script for ConfuserEx binaries☆35Updated 2 years ago
- ☆36Updated 2 years ago
- IDA strike-out: A Hex-Rays decompiler plugin to patch the Ctree☆99Updated 3 months ago
- ☆56Updated 2 years ago
- IDA Python3 Plugin to make your RE life easier. Trace execution and save code/memory for detailed exploration.☆32Updated 8 months ago
- Plugins related to LeechCore☆32Updated 2 months ago
- How to setup Pycharm to run scripts in IDA using the Run menu (or a keybind)☆39Updated 5 months ago
- Binary Ninja plugin that can be used to apply Triton's dead store eliminitation pass on basic blocks or functions.☆58Updated 4 months ago
- UnpacMe IDA Byte Search☆26Updated last year
- Binary Ninja plugin to clean up some common obfuscation techniques.☆19Updated 4 years ago
- IDA plugin to deobfuscate emotet CFF☆13Updated 2 years ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆61Updated last year
- IDA-names automatically renames pseudocode windows with the current function name.☆49Updated last year
- IDA plugin displaying the P-Code for the current function☆64Updated last year
- PoC plugin for jadx-gui to evaluate methods and update decompiler output☆19Updated 2 months ago
- JITM is an automated tool to bypass the JIT Hooking protection on a .NET sample.☆50Updated 3 years ago
- This is the PoC of a dynamic lifter and deobfuscator with collecting trace.☆32Updated last year
- A repository of IDA Databases and Binaries used for the analysis of popular commercial virtual-machine obfuscators☆64Updated 2 years ago
- api-tracer is a tiny (useless) tracer☆13Updated last year
- RevEng.AI IDA Pro Plugin☆38Updated last month