Alternatives and similar repositories for aes-finder

Users that are interested in aes-finder are comparing it to the libraries listed below

• JonathanSalwan / VMProtect-devirtualization

  View on GitHub
  Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.
  ☆1,384Jun 11, 2022Updated 3 years ago
• polymorf / findcrypt-yara

  View on GitHub
  IDA pro plugin to find crypto constants (and more)
  ☆1,670Nov 19, 2024Updated last year
• d3v1l401 / FindCrypt-Ghidra

  View on GitHub
  IDA Pro's FindCrypt ported to Ghidra, with an updated and customizable signature database
  ☆547Jun 25, 2023Updated 2 years ago
• wbenny / injdrv

  View on GitHub
  proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
  ☆1,269May 1, 2024Updated last year
• qilingframework / qiling

  View on GitHub
  A True Instrumentable Binary Emulation Framework
  ☆5,807Nov 5, 2025Updated 3 months ago
• imugee / pegasus

  View on GitHub
  reverse engineering extension plugin for windbg
  ☆120Sep 30, 2019Updated 6 years ago
• google / binexport

  View on GitHub
  Export disassemblies into Protocol Buffers
  ☆1,174Feb 2, 2026Updated 2 weeks ago
• pakt / decv

  View on GitHub
  Decompiler for Code Virtualizer 1.3.8 (Oreans)
  ☆87Oct 3, 2012Updated 13 years ago
• zyantific / zydis

  View on GitHub
  Fast and lightweight x86/x86-64 disassembler and code generation library
  ☆4,078Dec 8, 2025Updated 2 months ago
• JonathanSalwan / Triton

  View on GitHub
  Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software v…
  ☆4,049Dec 2, 2025Updated 2 months ago
• secrary / idenLib

  View on GitHub
  idenLib - Library Function Identification [This project is not maintained anymore]
  ☆396Mar 17, 2019Updated 6 years ago
• mrexodia / dumpulator

  View on GitHub
  An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in gen…
  ☆853Feb 2, 2024Updated 2 years ago
• Inception-framework / translator

  View on GitHub
  A framework for lifting ARM32 to LLVM-IR and merging resulting code with LLVM-IR generated from source-code.
  ☆12Oct 20, 2022Updated 3 years ago
• hasherezade / pe-sieve

  View on GitHub
  Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…
  ☆3,553Oct 31, 2025Updated 3 months ago
• REhints / HexRaysCodeXplorer

  View on GitHub
  Hex-Rays Decompiler plugin for better code navigation
  ☆2,601Nov 27, 2025Updated 2 months ago
• frkngksl / Huan

  View on GitHub
  Encrypted PE Loader Generator
  ☆543Aug 13, 2021Updated 4 years ago
• joxeankoret / diaphora

  View on GitHub
  Diaphora, the most advanced Free and Open Source program diffing tool.
  ☆4,180Nov 24, 2024Updated last year
• horsicq / PDBRipper

  View on GitHub
  PDBRipper is a utility for extract an information from PDB-files.
  ☆876Updated this week
• can1357 / NoVmp

  View on GitHub
  A static devirtualizer for VMProtect x64 3.x. powered by VTIL.
  ☆2,080Aug 8, 2021Updated 4 years ago
• igogo-x86 / HexRaysPyTools

  View on GitHub
  IDA Pro plugin which improves work with HexRays decompiler and helps in process of reconstruction structures and classes
  ☆1,507Aug 11, 2024Updated last year
• HyperDbg / HyperDbg

  View on GitHub
  State-of-the-art native debugging tools
  ☆3,627Updated this week
• jxy-s / herpaderping

  View on GitHub
  Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…
  ☆1,183Jul 5, 2023Updated 2 years ago
• everdox / InfinityHook

  View on GitHub
  Hook system calls, context switches, page faults and more.
  ☆2,631May 9, 2023Updated 2 years ago
• alexhude / uEmu

  View on GitHub
  Tiny cute emulator plugin for IDA based on unicorn.
  ☆1,226Aug 13, 2024Updated last year
• thalium / icebox

  View on GitHub
  Virtual Machine Introspection, Tracing & Debugging
  ☆595Feb 22, 2022Updated 3 years ago
• hugsy / CFB

  View on GitHub
  CFB is a ProcMon-style tool designed to assist capturing IRPs sent to Windows drivers.
  ☆333Mar 26, 2024Updated last year
• fr0gger / awesome-ida-x64-olly-plugin

  View on GitHub
  A curated list of IDA x64DBG, Ghidra and OllyDBG plugins.
  ☆1,502Oct 8, 2025Updated 4 months ago
• hfiref0x / WinObjEx64

  View on GitHub
  Windows Object Explorer 64-bit
  ☆1,883Feb 10, 2026Updated last week
• niemand-sec / AntiCheat-Testing-Framework

  View on GitHub
  Framework to test any Anti-Cheat
  ☆820Jul 25, 2022Updated 3 years ago
• Professor-plum / Reflective-Driver-Loader

  View on GitHub
  ☆409Mar 1, 2017Updated 8 years ago
• ergrelet / unlicense

  View on GitHub
  Dynamic unpacker and import fixer for Themida/WinLicense 2.x and 3.x.
  ☆1,334Aug 19, 2023Updated 2 years ago
• mandiant / speakeasy

  View on GitHub
  Windows kernel and user mode emulation.
  ☆1,841Feb 4, 2026Updated last week
• cruise-automation / fwanalyzer

  View on GitHub
  a tool to analyze filesystem images for security
  ☆511Oct 8, 2023Updated 2 years ago
• r3nhat / GRAT2

  View on GitHub
  We developed GRAT2 Command & Control (C2) project for learning purpose.
  ☆413Dec 19, 2020Updated 5 years ago
• rizinorg / cutter

  View on GitHub
  Free and Open Source Reverse Engineering Platform powered by rizin
  ☆18,355Feb 6, 2026Updated last week
• NtQuery / Scylla

  View on GitHub
  Imports Reconstructor
  ☆1,325Apr 5, 2023Updated 2 years ago
• 0xnobody / vmpdump

  View on GitHub
  A dynamic VMP dumper and import fixer, powered by VTIL.
  ☆1,320Nov 4, 2020Updated 5 years ago
• Colton1skees / WinTTD

  View on GitHub
  Reverse engineered API for Microsoft's Time Travel Debugger
  ☆36Apr 18, 2024Updated last year
• ytk2128 / pe32-password

  View on GitHub
  A simple password-based PE encryptor for Windows 32-bit executables.
  ☆51Jan 9, 2025Updated last year