lstaroth / AntiXorstrLinks
IDA Pro plugin AntiXorstr
☆148Updated 7 months ago
Alternatives and similar repositories for AntiXorstr
Users that are interested in AntiXorstr are comparing it to the libraries listed below
Sorting:
- Forked LLVM focused on MSVC Compatibility. This version is designed for windows users☆119Updated last week
- Exploit vulnerabilities in NeacSafe64.sys to achieve privilege escalation and kernel-mode shellcode execution☆54Updated 3 months ago
- VMP 3.X decrypt iat☆40Updated last year
- 一个用来做windows内核hook的框架☆178Updated 5 months ago
- A POC to detect the exist of VMProtect 3 protection by search feature watermark.☆81Updated last year
- A very simple C++ library for download pdb, get rva of function, global variable and offset from struct.☆150Updated last year
- ☆124Updated 4 months ago
- InfinityHook 支持Win7 到 Win11 最新版本,虚拟机环境及物理机环境☆90Updated 11 months ago
- r/w virtual memory without attach☆197Updated last year
- Titan is a VMProtect devirtualizer☆55Updated last year
- Simple IDA Pro plugin to download Unity debug symbols from their symbol server☆76Updated last year
- Bypass detection from Flare-floss☆28Updated last year
- ☆124Updated 2 years ago
- Example of reading process memory through kernel special APC☆110Updated 2 years ago
- 可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。☆110Updated 3 years ago
- VMProtect, VMP, Devirter, 3,5☆108Updated 2 years ago
- An AI-powered assistant for IDA 9.0+ to accelerate reverse engineering of C++ games.☆169Updated last month
- This project migrated to https://github.com/backengineering/llvm-msvc☆144Updated 2 years ago
- A simple ida python script to find .data ptr☆52Updated 2 years ago
- 使用 Intel 虚拟化特性 实现应用层HOOK☆63Updated 3 weeks ago
- ☆101Updated 3 years ago
- (communication detected)a kernel driver for game cheater. includes read&write memory / key&mouse simulator / kernel DWM render / process …☆87Updated 4 months ago
- Some psuedo snippets from BattlEye's BEDaisy.sys loaded on Rainbow Six: Siege.☆127Updated 3 years ago
- Emulate Drivers in RING3 with self context mapping or unicorn☆30Updated 9 months ago
- Kernel-Mode extended version of https://github.com/microsoft/Detours☆174Updated 4 months ago
- VMProtect 2.x-3.x x64 Import Deobfuscator☆351Updated last year
- A series of methods used to detect kernel shellcode for tencent game safe race 2024☆45Updated last year
- 从MmPfnData中枚举进程和页目录基址☆187Updated 2 years ago
- query-pdb is a server-side software for parsing PDB files. The software provides PDB online parsing service.☆159Updated last week
- ☆171Updated 3 years ago