mrphrazer/r2con2021_deobfuscation external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

mrphrazer/r2con2021_deobfuscation

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/mrphrazer/r2con2021_deobfuscation)

Close

mrphrazer / r2con2021_deobfuscationView on GitHubMore

• External links
• Readme badge

Workshop Material on VM-based Deobfuscation

☆201Oct 20, 2021Updated 4 years ago

Alternatives and similar repositories for r2con2021_deobfuscation

Users that are interested in r2con2021_deobfuscation are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• eset / stadeo

  View on GitHub
  Control-flow-flattening and string deobfuscator
  ☆160Nov 8, 2021Updated 4 years ago
• nlykkei / llvm-ir-obfuscation

  View on GitHub
  Collection of obfuscation, tamper-proofing, and watermarking algorithms targeting LLVM IR.
  ☆76Nov 12, 2019Updated 6 years ago
• mrphrazer / hitb2021ams_deobfuscation

  View on GitHub
  ☆72Jul 8, 2021Updated 4 years ago
• mrphrazer / r2con2020_deobfuscation

  View on GitHub
  ☆77Sep 30, 2021Updated 4 years ago
• mrphrazer / msynth

  View on GitHub
  Code deobfuscation framework to simplify Mixed Boolean-Arithmetic (MBA) expressions
  ☆372Updated this week
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• mrT4ntr4 / MODeflattener

  View on GitHub
  MODeflattener deobfuscates control flow flattened functions obfuscated by OLLVM using Miasm.
  ☆210Jul 23, 2021Updated 4 years ago
• alex-ilgayev / ida-pro-junk-code-removal

  View on GitHub
  ☆58Feb 27, 2020Updated 6 years ago
• mrexodia / dumpulator

  View on GitHub
  An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in gen…
  ☆868Feb 2, 2024Updated 2 years ago
• tum-i4 / dta-vs-osc

  View on GitHub
  Dynamic Taint Analysis versus Obfuscated Self-Checking
  ☆16Sep 5, 2021Updated 4 years ago
• archercreat / vmpfix

  View on GitHub
  Universal x86/x64 VMProtect 2.0-3.X Import fixer
  ☆30Dec 29, 2021Updated 4 years ago
• can1357 / NtRays

  View on GitHub
  Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
  ☆675Jan 28, 2025Updated last year
• mrphrazer / obfuscation_detection

  View on GitHub
  Binary Ninja plugin to identify obfuscated code and other interesting code constructs
  ☆657May 21, 2026Updated 3 weeks ago
• eset / wslink-vm-analyzer

  View on GitHub
  WslinkVMAnalyzer is a tool to facilitate analysis of code protected by a virtual machine featured in Wslink malware
  ☆48Jun 5, 2022Updated 4 years ago
• mcdulltii / obfDetect

  View on GitHub
  IDA plugin to pinpoint obfuscated code
  ☆142Apr 29, 2022Updated 4 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• archercreat / vm_jit

  View on GitHub
  VM devirtualization PoC based on AsmJit and llvm
  ☆126Sep 14, 2021Updated 4 years ago
• LLVMParty / TicklingVMProtect

  View on GitHub
  Assets for the "Tickling VMProtect with LLVM" blog post.
  ☆170Sep 16, 2021Updated 4 years ago
• mandiant / STrace

  View on GitHub
  A DTrace on Windows Reimplementation
  ☆373May 28, 2026Updated 3 weeks ago
• quarkslab / qsynthesis

  View on GitHub
  Greybox Synthesizer geared for deobfuscation of assembly instructions.
  ☆173Feb 16, 2025Updated last year
• JonathanSalwan / VMProtect-devirtualization

  View on GitHub
  Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.
  ☆1,450Jun 11, 2022Updated 4 years ago
• gaasedelen / tenet

  View on GitHub
  A Trace Explorer for Reverse Engineers
  ☆1,542Oct 23, 2023Updated 2 years ago
• sh4m2hwz / devirt_vmp

  View on GitHub
  devirtualization vmprotect
  ☆69Mar 11, 2023Updated 3 years ago
• shamrockhoax / mazedecoder

  View on GitHub
  ☆29May 10, 2020Updated 6 years ago
• wallds / NoVmpy

  View on GitHub
  ☆443Jan 1, 2025Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• EliseZeroTwo / SEH-Helper

  View on GitHub
  Binary Ninja plugin for exploring Structured Exception Handlers
  ☆85Jun 6, 2024Updated 2 years ago
• malrev / ABD

  View on GitHub
  Course materials for Advanced Binary Deobfuscation by NTT Secure Platform Laboratories
  ☆1,164Nov 14, 2020Updated 5 years ago
• mike1k / HookHunter

  View on GitHub
  Analyze patches in a process
  ☆262Jul 28, 2021Updated 4 years ago
• ergrelet / triton-bn

  View on GitHub
  Binary Ninja plugin that can be used to apply Triton's dead store eliminitation pass on basic blocks or functions.
  ☆65Jul 17, 2024Updated last year
• emc2314 / YANSOllvm

  View on GitHub
  Yet Another Not So Obfuscated LLVM
  ☆394Updated this week
• ioncodes / pooldump

  View on GitHub
  ☆31Jan 12, 2022Updated 4 years ago
• RolfRolles / HexRaysDeob

  View on GitHub
  Hex-Rays microcode API plugin for breaking an obfuscating compiler
  ☆801Feb 22, 2021Updated 5 years ago
• airbus-cert / ttddbg

  View on GitHub
  Time Travel Debugging IDA plugin
  ☆598Jun 27, 2024Updated last year
• RolfRolles / Miscellaneous

  View on GitHub
  Small programs and scripts that do not require their own repositories
  ☆139Feb 24, 2022Updated 4 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• anatolikalysch / VMAttack

  View on GitHub
  VMAttack PlugIn for IDA Pro
  ☆878Nov 30, 2017Updated 8 years ago
• JonathanSalwan / Tigress_protection

  View on GitHub
  Playing with the Tigress software protection. Break some of its protections and solve their reverse engineering challenges. Automatic deo…
  ☆902Nov 21, 2023Updated 2 years ago
• void-stack / VMUnprotect

  View on GitHub
  VMUnprotect can dynamically log and manipulate calls from virtualized methods by VMProtect.
  ☆492Apr 16, 2023Updated 3 years ago
• mzakocs / VirtualizationObfuscatorAnalysis

  View on GitHub
  A repository of IDA Databases and Binaries used for the analysis of popular commercial virtual-machine obfuscators
  ☆73Oct 7, 2022Updated 3 years ago
• can1357 / HexSuite

  View on GitHub
  Header only wrapper around Hex-Rays API in C++20.
  ☆167Dec 25, 2024Updated last year
• 0xnobody / vmpattack

  View on GitHub
  A VMP to VTIL lifter.
  ☆455May 20, 2021Updated 5 years ago
• archercreat / llvm_stuff

  View on GitHub
  LLVM based devirtualization PoC’s.
  ☆21Dec 11, 2021Updated 4 years ago