Alternatives and similar repositories for vmp_runner

Users that are interested in vmp_runner are comparing it to the libraries listed below

• nblog / Vm2Import
  fix vmprotect import function used unicorn-engine.
  ☆96Updated 2 years ago
• KiFilterFiberContext / VMP3-Disasm
  Experimental disassembler for x86 binaries virtualized by VMProtect 3
  ☆95Updated 3 years ago
• VMProtectResearch / vmp2-devirtualization
  vmp2.x devirtualization
  ☆78Updated 9 months ago
• KelvinMsft / NoTruth
  ☆99Updated 7 years ago
• Shhoya / MutantKiller
  VMP Mutation API Fix
  ☆41Updated 3 years ago
• Anal-Repair / Vmp3_utils
  ☆36Updated 3 years ago
• mrexodia / VMProtectTest
  VMProtectTest
  ☆38Updated 2 years ago
• Vicshann / GhostDbg
  Noninvasive debugging plugin for X64Dbg
  ☆106Updated 9 months ago
• Chordp / PatternGen
  ☆101Updated 3 years ago
• can1357 / vmpdump
  A dynamic VMP dumper and import fixer, powered by VTIL.
  ☆42Updated 4 years ago
• 9176324 / Daat
  a simple intel vt code both support x86 & x64. PatchGuard monitor.
  ☆76Updated 3 years ago
• CKCat / VMProtect-2-Reverse-Engineering
  ☆23Updated 3 years ago
• fIappy / FpVTProject
  intel vt-x hypervisor ept
  ☆24Updated 5 years ago
• KelvinMsft / PerfMon
  first commit
  ☆62Updated 4 years ago
• hsheep / vmpanalysis
  VMProtect analysis script
  ☆55Updated 5 years ago
• mzakocs / VirtualizationObfuscatorAnalysis
  A repository of IDA Databases and Binaries used for the analysis of popular commercial virtual-machine obfuscators
  ☆70Updated 2 years ago
• Vicshann / GInjer
  Global DLL injector
  ☆68Updated 4 years ago
• ilovecsad / Ark
  ☆80Updated 3 years ago
• hypn4 / FuckTP
  ☆21Updated 5 years ago
• zouxianyu / PhysicalMemoryRW
  the basic version of the ring0 physical memory read/write tool
  ☆88Updated 6 years ago
• bb33bb / r3epthook
  使用vt进行无痕hook，支持r3
  ☆59Updated 6 years ago
• therealdreg / ida_vmware_windows_gdb
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆67Updated 2 years ago
• fIappy / infhook19041
  ☆125Updated 5 years ago
• archercreat / vm_jit
  VM devirtualization PoC based on AsmJit and llvm
  ☆117Updated 3 years ago
• codetronik / KernelV
  Rootkit & Anti-rootkit
  ☆40Updated last year
• alal4465 / KernelMon
  A ProcMon-esque tool for monitoring Windows Kernel Drivers
  ☆58Updated 4 years ago
• anzelesnik / MySyscall
  Example of hijacking system calls via function pointer tables
  ☆31Updated 4 years ago
• IcEy-999 / Ntoskrnl_Viewer
  可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。
  ☆110Updated 2 years ago
• Ahmadmansoor / x64dbgScript
  This is just a x64dbg script system support.
  ☆47Updated 3 years ago
• llkbkh / Anti-Rootkit
  ☆50Updated 2 years ago