keowu / RyujinView external linksLinks
Ryūjin Protector - Is a Intel Arch - BIN2BIN - PE Obfuscation/Protection/DRM tool
☆302Nov 20, 2025Updated 2 months ago
Alternatives and similar repositories for Ryujin
Users that are interested in Ryujin are comparing it to the libraries listed below
Sorting:
- Zyrox: LLVM based, compile-time obfuscator plugin.☆84Feb 1, 2026Updated 2 weeks ago
- Using the peculiar behaviour of the VPGATHER instructions to determine if an address will fault before it is truly accessed. All done in …☆53Dec 30, 2025Updated last month
- A high-fidelity x86_64 polymorphic mutation engine focused on instruction-level fragmentation and context preservation.☆109Jan 18, 2026Updated 3 weeks ago
- An x86-64 code virtualizer for VM based obfuscation☆172Dec 21, 2024Updated last year
- AppLocker-Based EDR Neutralization☆302Dec 19, 2025Updated last month
- A C++ proof of concept demonstrating the exploitation of Windows Protected Process Light (PPL) by leveraging COM-to-.NET redirection and …☆332Mar 6, 2025Updated 11 months ago
- Evasion kit for Cobalt Strike☆30Jan 16, 2026Updated 3 weeks ago
- KVC enables unsigned driver loading via DSE bypass (g_CiOptions patch, skci.dll hijack, SeCiCallbacks redirection) and PP/PPL manipulatio…☆160Jan 26, 2026Updated 2 weeks ago
- Reflective shellcode loaderwith advanced call stack spoofing and .NET support.☆225Sep 19, 2025Updated 4 months ago
- ☆106Aug 21, 2024Updated last year
- Activation Context Hijack☆169Aug 3, 2025Updated 6 months ago
- A Just-In-Time Decrypter for Windows executables (x86 and x64) that performs real-time, instruction-level decryption of encrypted code se…☆48Nov 3, 2025Updated 3 months ago
- [WIP] claude opus x86_64 disassembler/lifter/recompiler☆27Updated this week
- Translate virtual addresses to physical addresses from usermode.☆101Jun 7, 2024Updated last year
- Run native PE or .NET executables entirely in-memory. Build the loader as an .exe or .dll—DllMain is Cobalt Strike UDRL-compatible☆266Jun 18, 2025Updated 7 months ago
- Dynamically resolve API function addresses at runtime in a secure manner.☆72Nov 11, 2025Updated 3 months ago
- A work in progress BOF/COFF loader in Rust☆50Mar 22, 2023Updated 2 years ago
- PE (and elf now!) bin2bin obfuscator☆810Oct 11, 2025Updated 4 months ago
- nmi stackwalking + module verification☆157Dec 28, 2023Updated 2 years ago
- Generate a PDB file given the old PDB file and an address mapping☆51Aug 3, 2025Updated 6 months ago
- ☆115Dec 11, 2025Updated 2 months ago
- The ADSyncDump BOF is a port of Dirk-Jan Mollema's adconnectdump.py / ADSyncDecrypt into a Beacon Object File (BOF) with zero dependencie…☆172Sep 3, 2025Updated 5 months ago
- Anti-Rootkit/Anti-Cheat Driver to uncover unbacked or hidden kernel code.☆294Dec 10, 2025Updated 2 months ago
- Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1☆72Sep 8, 2025Updated 5 months ago
- EvtPsst☆55Oct 24, 2023Updated 2 years ago
- Code execution/injection technique using DLL PEB module structure manipulation☆220Jun 4, 2025Updated 8 months ago
- Native code virtualizer for x64 binaries☆514Dec 20, 2024Updated last year
- ida utilities / plugins / scripts☆78Jan 29, 2026Updated 2 weeks ago
- Windows rootkit designed to work with BYOVD exploits☆214Jan 18, 2025Updated last year
- An x86-64 Code Virtualizer☆303Sep 26, 2024Updated last year
- Deobfuscation via optimization with usage of LLVM IR and parsing assembly.☆764Sep 29, 2025Updated 4 months ago
- ☆153Jul 31, 2022Updated 3 years ago
- .NET tool used to enrich RPC telemetry☆101Jan 24, 2026Updated 3 weeks ago
- A set of LLVM and GCC based plugins that perform code obfuscation.☆138Oct 20, 2025Updated 3 months ago
- Process injection alternative☆404Sep 6, 2024Updated last year
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆73Apr 13, 2025Updated 10 months ago
- an obfuscator based on LLVM which can obfuscate the program execution trajectory☆106Mar 15, 2021Updated 4 years ago
- ☆355May 11, 2025Updated 9 months ago
- protector & obfuscator & code virtualizer☆678Feb 8, 2026Updated last week