mrphrazer / r2con2021_deobfuscationLinks
Workshop Material on VM-based Deobfuscation
☆195Updated 4 years ago
Alternatives and similar repositories for r2con2021_deobfuscation
Users that are interested in r2con2021_deobfuscation are comparing it to the libraries listed below
Sorting:
- Control-flow-flattening and string deobfuscator☆156Updated 3 years ago
- MODeflattener deobfuscates control flow flattened functions obfuscated by OLLVM using Miasm.☆194Updated 4 years ago
- Efficient Deobfuscation of Linear Mixed Boolean-Arithmetic Expressions☆171Updated 2 years ago
- Hardening code obfuscation against automated attacks☆142Updated last year
- IDA plugin to pinpoint obfuscated code☆142Updated 3 years ago
- Greybox Synthesizer geared for deobfuscation of assembly instructions.☆160Updated 8 months ago
- ☆207Updated 2 years ago
- Simplification of General Mixed Boolean-Arithmetic Expressions: GAMBA☆146Updated last year
- Hex-Rays Block Highlighter plugin for IDA to highlight if/for/do/switch/while blocks☆62Updated 3 years ago
- Small programs and scripts that do not require their own repositories☆139Updated 3 years ago
- Port of MBA Solver SiMBA to C/C++ (MBA deobfuscation in real world applications)☆92Updated 2 weeks ago
- A dark Nord theme port for Hex Rays IDA☆102Updated 3 years ago
- Bindings for Microsoft WinDBG TTD☆233Updated 2 years ago
- IDAPatternSearch adds a capability of finding functions according to bit-patterns into the well-known IDA Pro disassembler based on Ghidr…☆64Updated 4 years ago
- Easy-to-use IDA plugin for code emulation☆42Updated last month
- How to setup Pycharm to run scripts in IDA using the Run menu (or a keybind)☆42Updated last year
- Code deobfuscation framework to simplify Mixed Boolean-Arithmetic (MBA) expressions☆331Updated 5 months ago
- ☆109Updated 4 years ago
- IDA Pro plugin that displays all comments in a database☆69Updated last year
- Assets for the "Tickling VMProtect with LLVM" blog post.☆156Updated 4 years ago
- Slides, recordings and materials of my public presentations, talks and workshops.☆78Updated 4 months ago
- Hexrays decompiler plugin that colorizes and filters the decompiler's output based on regular expressions☆140Updated last year
- Binary Ninja plugin that can be used to apply Triton's dead store eliminitation pass on basic blocks or functions.☆64Updated last year
- A recursive disassembler written in Python. Most suitable for VMs in CTFs.☆21Updated 5 years ago
- IDA Plugin that fills in missing indirect CALL & JMP target information☆139Updated 9 months ago
- LLVM based static binary analysis framework☆262Updated 6 months ago
- Notes on using the Python bindings for the Unicorn Engine☆80Updated 5 years ago
- x64dbg plugin for running python3 script. Focus on doing malware analyst and unpacking☆61Updated 8 months ago
- PoC for a taint based attack on VMProtect☆122Updated 6 years ago
- Non-linear Mixed Boolean-Arithmetic Expressions☆67Updated last year