mrphrazer/r2con2021_deobfuscation external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

mrphrazer/r2con2021_deobfuscation

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/mrphrazer/r2con2021_deobfuscation)

Close

mrphrazer / r2con2021_deobfuscationView on GitHubMore

• External links
• Readme badge

Workshop Material on VM-based Deobfuscation

☆200Oct 20, 2021Updated 4 years ago

Alternatives and similar repositories for r2con2021_deobfuscation

Users that are interested in r2con2021_deobfuscation are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• eset / stadeo

  View on GitHub
  Control-flow-flattening and string deobfuscator
  ☆160Nov 8, 2021Updated 4 years ago
• nlykkei / llvm-ir-obfuscation

  View on GitHub
  Collection of obfuscation, tamper-proofing, and watermarking algorithms targeting LLVM IR.
  ☆76Nov 12, 2019Updated 6 years ago
• mrphrazer / hitb2021ams_deobfuscation

  View on GitHub
  ☆72Jul 8, 2021Updated 4 years ago
• mrphrazer / r2con2020_deobfuscation

  View on GitHub
  ☆76Sep 30, 2021Updated 4 years ago
• mrphrazer / msynth

  View on GitHub
  Code deobfuscation framework to simplify Mixed Boolean-Arithmetic (MBA) expressions
  ☆355Feb 2, 2026Updated last month
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• mrT4ntr4 / MODeflattener

  View on GitHub
  MODeflattener deobfuscates control flow flattened functions obfuscated by OLLVM using Miasm.
  ☆203Jul 23, 2021Updated 4 years ago
• alex-ilgayev / ida-pro-junk-code-removal

  View on GitHub
  ☆56Feb 27, 2020Updated 6 years ago
• mrexodia / dumpulator

  View on GitHub
  An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in gen…
  ☆858Feb 2, 2024Updated 2 years ago
• tum-i4 / dta-vs-osc

  View on GitHub
  Dynamic Taint Analysis versus Obfuscated Self-Checking
  ☆16Sep 5, 2021Updated 4 years ago
• archercreat / vmpfix

  View on GitHub
  Universal x86/x64 VMProtect 2.0-3.X Import fixer
  ☆22Dec 29, 2021Updated 4 years ago
• can1357 / NtRays

  View on GitHub
  Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
  ☆663Jan 28, 2025Updated last year
• mrphrazer / obfuscation_detection

  View on GitHub
  Binary Ninja plugin to identify obfuscated code and other interesting code constructs
  ☆655Mar 14, 2025Updated last year
• eset / wslink-vm-analyzer

  View on GitHub
  WslinkVMAnalyzer is a tool to facilitate analysis of code protected by a virtual machine featured in Wslink malware
  ☆47Jun 5, 2022Updated 3 years ago
• mcdulltii / obfDetect

  View on GitHub
  IDA plugin to pinpoint obfuscated code
  ☆142Apr 29, 2022Updated 3 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• archercreat / vm_jit

  View on GitHub
  VM devirtualization PoC based on AsmJit and llvm
  ☆123Sep 14, 2021Updated 4 years ago
• LLVMParty / TicklingVMProtect

  View on GitHub
  Assets for the "Tickling VMProtect with LLVM" blog post.
  ☆167Sep 16, 2021Updated 4 years ago
• mandiant / STrace

  View on GitHub
  A DTrace on Windows Reimplementation
  ☆374Mar 12, 2026Updated 2 weeks ago
• quarkslab / qsynthesis

  View on GitHub
  Greybox Synthesizer geared for deobfuscation of assembly instructions.
  ☆168Feb 16, 2025Updated last year
• JonathanSalwan / VMProtect-devirtualization

  View on GitHub
  Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.
  ☆1,399Jun 11, 2022Updated 3 years ago
• sh4m2hwz / devirt_vmp

  View on GitHub
  devirtualization vmprotect
  ☆65Mar 11, 2023Updated 3 years ago
• gaasedelen / tenet

  View on GitHub
  A Trace Explorer for Reverse Engineers
  ☆1,529Oct 23, 2023Updated 2 years ago
• shamrockhoax / mazedecoder

  View on GitHub
  ☆29May 10, 2020Updated 5 years ago
• wallds / NoVmpy

  View on GitHub
  ☆429Jan 1, 2025Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• EliseZeroTwo / SEH-Helper

  View on GitHub
  Binary Ninja plugin for exploring Structured Exception Handlers
  ☆83Jun 6, 2024Updated last year
• malrev / ABD

  View on GitHub
  Course materials for Advanced Binary Deobfuscation by NTT Secure Platform Laboratories
  ☆1,162Nov 14, 2020Updated 5 years ago
• mike1k / HookHunter

  View on GitHub
  Analyze patches in a process
  ☆261Jul 28, 2021Updated 4 years ago
• ergrelet / triton-bn

  View on GitHub
  Binary Ninja plugin that can be used to apply Triton's dead store eliminitation pass on basic blocks or functions.
  ☆64Jul 17, 2024Updated last year
• emc2314 / YANSOllvm

  View on GitHub
  Yet Another Not So Obfuscated LLVM
  ☆390May 30, 2024Updated last year
• ioncodes / pooldump

  View on GitHub
  ☆31Jan 12, 2022Updated 4 years ago
• RolfRolles / HexRaysDeob

  View on GitHub
  Hex-Rays microcode API plugin for breaking an obfuscating compiler
  ☆800Feb 22, 2021Updated 5 years ago
• airbus-cert / ttddbg

  View on GitHub
  Time Travel Debugging IDA plugin
  ☆596Jun 27, 2024Updated last year
• RolfRolles / Miscellaneous

  View on GitHub
  Small programs and scripts that do not require their own repositories
  ☆139Feb 24, 2022Updated 4 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• JonathanSalwan / Tigress_protection

  View on GitHub
  Playing with the Tigress software protection. Break some of its protections and solve their reverse engineering challenges. Automatic deo…
  ☆888Nov 21, 2023Updated 2 years ago
• anatolikalysch / VMAttack

  View on GitHub
  VMAttack PlugIn for IDA Pro
  ☆867Nov 30, 2017Updated 8 years ago
• void-stack / VMUnprotect

  View on GitHub
  VMUnprotect can dynamically log and manipulate calls from virtualized methods by VMProtect.
  ☆481Apr 16, 2023Updated 2 years ago
• mzakocs / VirtualizationObfuscatorAnalysis

  View on GitHub
  A repository of IDA Databases and Binaries used for the analysis of popular commercial virtual-machine obfuscators
  ☆72Oct 7, 2022Updated 3 years ago
• 0xnobody / vmpattack

  View on GitHub
  A VMP to VTIL lifter.
  ☆446May 20, 2021Updated 4 years ago
• can1357 / HexSuite

  View on GitHub
  Header only wrapper around Hex-Rays API in C++20.
  ☆169Dec 25, 2024Updated last year
• archercreat / llvm_stuff

  View on GitHub
  LLVM based devirtualization PoC’s.
  ☆21Dec 11, 2021Updated 4 years ago