omgkaka / vmp_runnerLinks
A general solution to simulate execution of virtualized instructions (vmprotect/themida, etc.).
☆74Updated 3 years ago
Alternatives and similar repositories for vmp_runner
Users that are interested in vmp_runner are comparing it to the libraries listed below
Sorting:
- fix vmprotect import function used unicorn-engine.☆97Updated 2 years ago
- Experimental disassembler for x86 binaries virtualized by VMProtect 3☆96Updated 3 years ago
- vmp2.x devirtualization☆83Updated 11 months ago
- Noninvasive debugging plugin for X64Dbg☆107Updated 10 months ago
- VMP Mutation API Fix☆42Updated 3 years ago
- VMProtectTest☆38Updated 2 years ago
- ☆98Updated 8 years ago
- ☆36Updated 3 years ago
- A dynamic VMP dumper and import fixer, powered by VTIL.☆42Updated 5 years ago
- Global DLL injector☆70Updated 4 years ago
- a simple intel vt code both support x86 & x64. PatchGuard monitor.☆76Updated 3 years ago
- first commit☆62Updated 4 years ago
- ☆99Updated 3 years ago
- 使用vt进行无痕hook,支持r3☆58Updated 6 years ago
- A repository of IDA Databases and Binaries used for the analysis of popular commercial virtual-machine obfuscators☆70Updated 3 years ago
- This is just a x64dbg script system support.☆47Updated 3 years ago
- the basic version of the ring0 physical memory read/write tool☆90Updated 6 years ago
- ☆79Updated 3 years ago
- ☆23Updated 3 years ago
- VM devirtualization PoC based on AsmJit and llvm☆110Updated 4 years ago
- VMProtect analysis script☆54Updated 5 years ago
- a frame of amd-v svm nest☆53Updated 5 years ago
- ☆21Updated 6 years ago
- VMProtect, VMP, Devirter, 3,5☆108Updated 2 years ago
- Win7内核私有符号结构转储☆69Updated 4 years ago
- ☆43Updated 2 years ago
- ☆125Updated 5 years ago
- 可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。☆109Updated 3 years ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆65Updated 2 years ago
- All Nt Syscall and W32k Syscall in one asm, include, and call it!☆58Updated 3 years ago