Workshop Material on VM-based Deobfuscation
☆199Oct 20, 2021Updated 4 years ago
Alternatives and similar repositories for r2con2021_deobfuscation
Users that are interested in r2con2021_deobfuscation are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Control-flow-flattening and string deobfuscator☆160Nov 8, 2021Updated 4 years ago
- Collection of obfuscation, tamper-proofing, and watermarking algorithms targeting LLVM IR.☆76Nov 12, 2019Updated 6 years ago
- ☆72Jul 8, 2021Updated 5 years ago
- ☆77Sep 30, 2021Updated 4 years ago
- Code deobfuscation framework to simplify Mixed Boolean-Arithmetic (MBA) expressions☆374Jun 14, 2026Updated 3 weeks ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- MODeflattener deobfuscates control flow flattened functions obfuscated by OLLVM using Miasm.☆211Jul 23, 2021Updated 4 years ago
- ☆57Feb 27, 2020Updated 6 years ago
- An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in gen…☆868Feb 2, 2024Updated 2 years ago
- Dynamic Taint Analysis versus Obfuscated Self-Checking☆16Sep 5, 2021Updated 4 years ago
- Universal x86/x64 VMProtect 2.0-3.X Import fixer☆31Dec 29, 2021Updated 4 years ago
- Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.☆674Jan 28, 2025Updated last year
- Binary Ninja plugin to identify obfuscated code and other interesting code constructs☆660May 21, 2026Updated last month
- WslinkVMAnalyzer is a tool to facilitate analysis of code protected by a virtual machine featured in Wslink malware☆48Jun 5, 2022Updated 4 years ago
- IDA plugin to pinpoint obfuscated code☆142Apr 29, 2022Updated 4 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- VM devirtualization PoC based on AsmJit and llvm☆125Sep 14, 2021Updated 4 years ago
- Assets for the "Tickling VMProtect with LLVM" blog post.☆170Sep 16, 2021Updated 4 years ago
- A DTrace on Windows Reimplementation☆375May 28, 2026Updated last month
- Greybox Synthesizer geared for deobfuscation of assembly instructions.☆174Feb 16, 2025Updated last year
- Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.☆1,455Jun 11, 2022Updated 4 years ago
- devirtualization vmprotect☆69Mar 11, 2023Updated 3 years ago
- A Trace Explorer for Reverse Engineers☆1,544Oct 23, 2023Updated 2 years ago
- ☆29May 10, 2020Updated 6 years ago
- ☆443Jan 1, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Binary Ninja plugin for exploring Structured Exception Handlers☆85Jun 6, 2024Updated 2 years ago
- Course materials for Advanced Binary Deobfuscation by NTT Secure Platform Laboratories☆1,164Nov 14, 2020Updated 5 years ago
- Analyze patches in a process☆261Jul 28, 2021Updated 4 years ago
- Binary Ninja plugin that can be used to apply Triton's dead store eliminitation pass on basic blocks or functions.☆65Jul 17, 2024Updated last year
- Yet Another Not So Obfuscated LLVM☆397Jun 30, 2026Updated last week
- ☆31Jan 12, 2022Updated 4 years ago
- Hex-Rays microcode API plugin for breaking an obfuscating compiler☆802Feb 22, 2021Updated 5 years ago
- Time Travel Debugging IDA plugin☆598Jun 27, 2024Updated 2 years ago
- Small programs and scripts that do not require their own repositories☆140Feb 24, 2022Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- VMAttack PlugIn for IDA Pro☆883Nov 30, 2017Updated 8 years ago
- Playing with the Tigress software protection. Break some of its protections and solve their reverse engineering challenges. Automatic deo…☆904Nov 21, 2023Updated 2 years ago
- VMUnprotect can dynamically log and manipulate calls from virtualized methods by VMProtect.☆493Apr 16, 2023Updated 3 years ago
- A repository of IDA Databases and Binaries used for the analysis of popular commercial virtual-machine obfuscators☆73Oct 7, 2022Updated 3 years ago
- Header only wrapper around Hex-Rays API in C++20.☆168Dec 25, 2024Updated last year
- A VMP to VTIL lifter.☆455May 20, 2021Updated 5 years ago
- LLVM based devirtualization PoC’s.☆20Dec 11, 2021Updated 4 years ago