necst / arancino
Arancino is a dynamic protection framework that defends Intel Pin against anti-instrumentation attacks.
☆72Updated 2 years ago
Alternatives and similar repositories for arancino:
Users that are interested in arancino are comparing it to the libraries listed below
- automated-arancino is a lightweight analysis framework to automate malware experiments.☆15Updated 7 years ago
- ☆48Updated 4 years ago
- ☆87Updated 9 years ago
- ☆44Updated 7 years ago
- Security Evaluation of Dynamic Binary Instrumentation Engines☆79Updated 6 years ago
- Kernel driver to fuzz Hyper-V hypercalls☆136Updated 6 years ago
- VMI-Unpack - A Virtual Machine Introspection (VMI) based generic unpacker.☆55Updated 5 years ago
- PoC for a snapshot-based coverage-guided fuzzer targeting Windows kernel components☆68Updated 3 years ago
- SAFE embeddings to match functions in yara☆100Updated 5 years ago
- suite of binaries used to test function identification☆28Updated 7 years ago
- ☆177Updated 6 years ago
- Clone of "Compiler-Agnostic Function Detection in Binaries" source code☆86Updated 3 years ago
- Logic-Oriented Opaque Predicate Detection in Obfuscated Binary Code☆50Updated 9 years ago
- ☆89Updated 5 years ago
- This repository contains the currently implemented angr concrete targets.☆33Updated last year
- Compiled CGC binaries for experimentation porpoises.☆21Updated 7 years ago
- Implementation of our S&P16 paper: A Tough Call: Mitigating Advanced Code-Reuse Attacks☆46Updated 7 years ago
- IDA plugin for software complexity metrics assessment☆59Updated 7 years ago
- Utilities for generating dynamic traces☆90Updated 2 years ago
- TaintInduce is a project which aims to automate the creation of taint propagation rules for unknown instruction sets.☆58Updated 4 years ago
- MrsPicky - An IDAPython decompiler script that helps auditing memcpy() and memmove() calls☆121Updated 11 months ago
- A set of programs used for benchmarking the strength of obfuscation☆86Updated 7 years ago
- This IDAPython script tags subroutines according to their use of imported functions☆72Updated 3 years ago
- InsTrim: Lightweight Instrumentation for Coverage-guided Fuzzing☆82Updated 4 years ago
- A framework for static analysis of ROP exploits and programs☆40Updated 5 years ago
- A fork of AFL for fuzzing Windows binaries☆53Updated 6 years ago
- ☆63Updated 5 years ago
- PEDA-like debugger UI for WinDbg☆202Updated 11 months ago
- A branch-monitor-based solution for process monitoring.☆132Updated 5 years ago
- qb-sync is an open source tool to add some helpful glue between IDA Pro and Windbg. Its core feature is to dynamically synchronize IDA's …☆119Updated 9 years ago