poppopjmp / VMDragonSlayerLinks
Automated multi-engine framework for unpacking, analyzing, and devirtualizing binaries protected by commercial and custom Virtual Machine based protectors. Combines Dynamic Taint Tracking, Symbolic Execution, Pattern & Semantic Classification, and Machine Learning–driven prioritization to dramatically reduce manual reverse engineering time.
☆307Updated 3 months ago
Alternatives and similar repositories for VMDragonSlayer
Users that are interested in VMDragonSlayer are comparing it to the libraries listed below
Sorting:
- Rewrite and obfuscate code in compiled binaries☆273Updated last month
- Obfusk8: lightweight Obfuscation library based on C++17 / Header Only for windows binaries☆410Updated last week
- NovaHypervisor is a defensive x64 Intel host based hypervisor. The goal of this project is to protect against kernel based attacks (eithe…☆236Updated 3 months ago
- An x86-64 Code Virtualizer☆299Updated last year
- Binary Ninja plugin to analyze and simplify obfuscated code☆233Updated 3 months ago
- compile-time control flow obfuscation using mba☆199Updated 2 years ago
- C++ macro for x64 programs that breaks ida hex-rays decompiler tool.☆137Updated last year
- Obfuscator-llvm Control Flow Flattening Deobfuscator☆228Updated 8 months ago
- ☆157Updated 2 weeks ago
- Windows 11 24H2-25H2 Runtime PatchGuard Bypass☆236Updated 2 months ago
- An x86-64 code virtualizer for VM based obfuscation☆160Updated last year
- LLVM based static binary analysis framework☆294Updated 9 months ago
- A high-performance C++ framework for emulating executable binaries☆128Updated last month
- A tool that is used to hunt vulnerabilities in x64 WDM drivers☆422Updated last month
- bypassing intel txt's tboot integrity checks via coreboot shim☆83Updated 10 months ago
- Static deobfuscator for Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.☆321Updated last year
- Collection of hypervisor detections☆288Updated last year
- RISC-V Virtual Machine☆275Updated 7 months ago
- Debugger Anti-Detection Benchmark☆380Updated 5 months ago
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆160Updated last year
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆248Updated last year
- x86-64 code/pe virtualizer☆205Updated last year
- uefi diskless persistence technique + OVMF secureboot bypass☆95Updated last year
- Easy-to-use IDA plugin for code emulation☆51Updated last month
- A Qt-based CyberChef interface designed for malware analysis workflows, particularly in IDA Pro☆87Updated 2 months ago
- Windows kernel debugger for Linux hosts running Windows under KVM/QEMU☆114Updated 3 weeks ago
- Anti-Rootkit/Anti-Cheat Driver to uncover unbacked or hidden kernel code.☆274Updated last month
- Native code virtualizer for x64 binaries☆511Updated last year
- A collection of Proof-of-Concept implementations of various anti-disassembly techniques for ARM32 and ARM64 architectures.☆72Updated 8 months ago
- Rusty Hypervisor - Windows UEFI Blue Pill Type-1 Hypervisor in Rust (Codename: Illusion)☆331Updated last year