juhajong / vm-obfuscatorLinks
simple virtualization obfuscator
☆34Updated 5 years ago
Alternatives and similar repositories for vm-obfuscator
Users that are interested in vm-obfuscator are comparing it to the libraries listed below
Sorting:
- vmp2.x devirtualization☆76Updated 9 months ago
- VMProtect analysis script☆55Updated 5 years ago
- Obfuscator based on logic-bombs☆66Updated 5 years ago
- All materials related https://resources.infosecinstitute.com/tutorial-building-reverse-engineering-simple-virtual-machine-protection/☆55Updated 8 years ago
- VM devirtualization PoC based on AsmJit and llvm☆117Updated 3 years ago
- virtualization obfuscator inspired by juhajong/vm-obfuscator☆57Updated 5 years ago
- PoC for a taint based attack on VMProtect☆110Updated 6 years ago
- Collection of obfuscation, tamper-proofing, and watermarking algorithms targeting LLVM IR.☆74Updated 5 years ago
- IDAPatternSearch adds a capability of finding functions according to bit-patterns into the well-known IDA Pro disassembler based on Ghidr…☆63Updated 3 years ago
- VMProtectTest☆37Updated 2 years ago
- This is a simple driver with x64 inline assembly☆57Updated 5 years ago
- LLVM pass that obfuscates against symbolic execution☆75Updated 7 years ago
- ☆36Updated 3 years ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆67Updated last year
- A general solution to simulate execution of virtualized instructions (vmprotect/themida, etc.).☆74Updated 3 years ago
- A simple and heavily documented series of test hypervisors built for 64-bit Windows 10 systems running under Intel's VT-x☆33Updated 4 years ago
- A debugger backend for IDA Pro built on top of of Intel’s PIN framework☆32Updated last year
- Non-linear Mixed Boolean-Arithmetic Expressions☆64Updated last year
- Symbolic expression simplifier used across VTIL toolchain. Moved into -->☆24Updated 5 years ago
- IDA strike-out: A Hex-Rays decompiler plugin to patch the Ctree☆117Updated 11 months ago
- fix vmprotect import function used unicorn-engine.☆96Updated 2 years ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆79Updated 14 years ago
- ☆92Updated 4 years ago
- Analyze PatchGuard☆59Updated 6 years ago
- Parser for Microsoft Program Database (PDB) files☆76Updated 5 years ago
- Toy LLVM obfuscator pass☆74Updated 3 years ago
- a plugin for ida of version 7.2 to help know F5 window codes better☆54Updated 5 years ago
- Python bindings for the VTIL API. (WIP)☆29Updated 5 years ago
- Code virtualizer☆25Updated 9 years ago
- Assets for the "Tickling VMProtect with LLVM" blog post.☆157Updated 3 years ago