omgkaka / vmp_runnerLinks
A general solution to simulate execution of virtualized instructions (vmprotect/themida, etc.).
☆77Updated 3 years ago
Alternatives and similar repositories for vmp_runner
Users that are interested in vmp_runner are comparing it to the libraries listed below
Sorting:
- fix vmprotect import function used unicorn-engine.☆98Updated 2 years ago
- vmp2.x devirtualization☆90Updated last year
- Experimental disassembler for x86 binaries virtualized by VMProtect 3☆97Updated 3 years ago
- Noninvasive debugging plugin for X64Dbg☆110Updated last year
- VMP Mutation API Fix☆44Updated 3 years ago
- VMProtectTest☆40Updated 2 years ago
- ☆99Updated 8 years ago
- a simple intel vt code both support x86 & x64. PatchGuard monitor.☆77Updated 4 years ago
- Global DLL injector☆70Updated 4 years ago
- ☆36Updated 3 years ago
- A dynamic VMP dumper and import fixer, powered by VTIL.☆43Updated 5 years ago
- the basic version of the ring0 physical memory read/write tool☆91Updated 6 years ago
- ☆81Updated 3 years ago
- first commit☆64Updated 5 years ago
- All Nt Syscall and W32k Syscall in one asm, include, and call it!☆58Updated 4 years ago
- ☆102Updated 3 years ago
- This is just a x64dbg script system support.☆48Updated 3 years ago
- ☆24Updated 3 years ago
- 使用vt进行无痕hook,支持r3☆61Updated 6 years ago
- 可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。☆107Updated 3 years ago
- ☆127Updated 5 years ago
- Win7内核私有符号结构转储☆70Updated 4 years ago
- ☆23Updated 6 years ago
- A POC to detect the exist of VMProtect 3 protection by search feature watermark.☆84Updated 2 years ago
- ☆54Updated 3 years ago
- Intel Virtualization Technology demo☆70Updated 9 years ago
- 轻量级自动分析病毒程序调用上下文、游戏反调试实现技术平台☆100Updated 5 years ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆67Updated 2 years ago
- VM devirtualization PoC based on AsmJit and llvm☆122Updated 4 years ago
- A ProcMon-esque tool for monitoring Windows Kernel Drivers☆61Updated 4 years ago