Automated multi-engine framework for unpacking, analyzing, and devirtualizing binaries protected by commercial and custom Virtual Machine based protectors. Combines Dynamic Taint Tracking, Symbolic Execution, Pattern & Semantic Classification, and Machine Learning–driven prioritization to dramatically reduce manual reverse engineering time.
☆397Feb 22, 2026Updated 2 months ago
Alternatives and similar repositories for VMDragonSlayer
Users that are interested in VMDragonSlayer are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- LLVM based static binary analysis framework☆317Apr 2, 2025Updated last year
- Native code virtualizer for x64 binaries☆530Dec 20, 2024Updated last year
- Deobfuscation via optimization with usage of LLVM IR and parsing assembly.☆823May 2, 2026Updated last week
- Comprehensive Windows Syscall Extraction & Analysis Framework☆168Aug 30, 2025Updated 8 months ago
- Standalone static version of Triton's x86/x64 translator☆33May 2, 2026Updated last week
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Static deobfuscator for Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.☆343Jul 29, 2024Updated last year
- Titan is a VMProtect devirtualizer☆128Mar 6, 2024Updated 2 years ago
- Rewrite and obfuscate code in compiled binaries☆275Dec 13, 2025Updated 4 months ago
- An x86-64 Code Virtualizer☆316Sep 26, 2024Updated last year
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated last year
- binary instrumentation, analysis, and patching framework☆105Feb 20, 2026Updated 2 months ago
- Windows 11 24H2-25H2 Runtime PatchGuard Bypass☆257Nov 4, 2025Updated 6 months ago
- Blog/Journal on how to backdoor VSCode extensions☆79Feb 24, 2026Updated 2 months ago
- WinVisor - A hypervisor-based emulator for Windows x64 user-mode executables using Windows Hypervisor Platform API☆663Jan 23, 2025Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- This repository offers an open-source C++ SDK bindings for IDA, enabling custom plugin development and automation.☆362Apr 27, 2026Updated last week
- A Windows Kernel Driver Emulator base on Unicorn, Kernel Memory Dump and some of native environment☆179Jan 15, 2026Updated 3 months ago
- Rust library for lifting raw binary data to LLVM IR☆62Jul 18, 2025Updated 9 months ago
- protector & obfuscator & code virtualizer☆716Apr 22, 2026Updated 2 weeks ago
- IDA Pro plugin AntiXorstr☆157Feb 24, 2025Updated last year
- HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate oper…☆381Jun 3, 2023Updated 2 years ago
- x86-64 user mode emulation using Zydis☆73Mar 15, 2026Updated last month
- IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformati…☆1,829Updated this week
- An x86-64 code virtualizer for VM based obfuscation☆191Dec 21, 2024Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆74Apr 13, 2025Updated last year
- unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…☆64Feb 7, 2024Updated 2 years ago
- Port of zentool to Windows☆27Mar 7, 2025Updated last year
- Cheat for my own game SecureGame which uses a bootkit to hyperjack Hyper-V in order to access VBS enclave's memory☆125Dec 8, 2024Updated last year
- PE (and elf now!) bin2bin obfuscator☆842Oct 11, 2025Updated 6 months ago
- Simple x86/x86_64 instruction level obfuscator based on a basic SBI engine☆283Nov 20, 2022Updated 3 years ago
- ☆435Jan 1, 2025Updated last year
- Obfuscator-llvm Control Flow Flattening Deobfuscator☆261Apr 16, 2025Updated last year
- an ida plugin used to decompile vmp☆384Jul 2, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Fast covert timing channel communication for inter-process and inter-processor communication on Windows systems.☆72Mar 24, 2026Updated last month
- Windows hypervisor for Intel x64: defensive host hypervisor for Windows designed to mitigate kernel-level attacks including BYOVD, compat…☆259Mar 15, 2026Updated last month
- Exemplary LLVM function pass implementing Control Flow Flattening.☆17May 2, 2018Updated 8 years ago
- Proof of concept source code and misc files for my CVE-2025-21692 exploit, kernel version 6.6.75☆40Sep 16, 2025Updated 7 months ago
- an obfuscator based on LLVM which can obfuscate the program execution trajectory☆107Mar 15, 2021Updated 5 years ago
- Efficient general mixed boolean-arithmetic (MBA) simplifier☆130Apr 30, 2026Updated last week
- A collection of vibe reverse engineered binaries and malware (for educational purposes only)☆43Updated this week