mandiant / jitmLinks
JITM is an automated tool to bypass the JIT Hooking protection on a .NET sample.
☆54Updated 4 years ago
Alternatives and similar repositories for jitm
Users that are interested in jitm are comparing it to the libraries listed below
Sorting:
- CTF writeups☆35Updated 7 months ago
- Dump .net assembly from a native loader which uses ClrCreateinstance☆57Updated 2 years ago
- Universal unpacker and fixer for a number of modded ConfuserEx protections☆105Updated 4 years ago
- ☆24Updated last year
- A small virtualizer for .NET which works together with ConfuserEx☆65Updated 5 years ago
- ☆103Updated 2 years ago
- A Proof-of-Concept implementation for Proxy Object Obfuscation in .NET☆48Updated 2 years ago
- Resolve DOS MZ executable symbols at runtime☆95Updated 3 years ago
- Think APIMonitor, but for .NET binaries.☆57Updated 2 years ago
- x64 syscall caller in C++.☆90Updated 7 years ago
- Yet another CawkVM unpacker...☆79Updated 2 years ago
- fix vmprotect import function used unicorn-engine.☆93Updated 2 years ago
- A simple dnSpy extension for easily renaming members.☆19Updated 2 years ago
- C++ library for parsing and manipulating PE files statically and dynamically.☆88Updated last year
- This x64dbg plugin adds several commands for dumping PE header information by address.☆63Updated 8 years ago
- Deobfuscator for remove proxy calls methods☆25Updated 2 years ago
- Simple tool to extract and decompress embedded resources processed by Fody Costura☆69Updated 11 months ago
- A newly programmed tool that will deobfuscate Agile.Net Obfuscation.☆72Updated 3 years ago
- VMProtect, VMP, Devirter, 3,5☆107Updated 2 years ago
- Nasha is a Virtual Machine for .NET files and its runtime was made in C++/CLI☆79Updated 3 years ago
- Debug Print viewer (user and kernel)☆66Updated last year
- A tool to automatically defeat .NET crackmes based on string equality comparisons☆18Updated 3 years ago
- Simple tool that allows you to have multiple Just-In-Time debuggers at once.☆93Updated 6 months ago
- Simple windows API logger☆104Updated 5 years ago
- Ghetto user mode emulation of Windows kernel drivers.☆139Updated 8 months ago
- Easy-to-use IDA plugin for code emulation☆33Updated last year
- (DEPRECATED) A simple anti-anti debug library for Windows☆29Updated 4 years ago
- PE-Dump-Fixer☆105Updated 5 years ago
- A ProcMon-esque tool for monitoring Windows Kernel Drivers☆58Updated 4 years ago
- Extracts the files embedded inside of a .NET AppHost.☆18Updated 9 months ago