poppopjmp / VMDragonSlayerLinks
Automated multi-engine framework for unpacking, analyzing, and devirtualizing binaries protected by commercial and custom Virtual Machine based protectors. Combines Dynamic Taint Tracking, Symbolic Execution, Pattern & Semantic Classification, and Machine Learning–driven prioritization to dramatically reduce manual reverse engineering time.
☆291Updated last month
Alternatives and similar repositories for VMDragonSlayer
Users that are interested in VMDragonSlayer are comparing it to the libraries listed below
Sorting:
- Rewrite and obfuscate code in compiled binaries☆267Updated last month
- Obfusk8: lightweight Obfuscation library based on C++17 / Header Only for windows binaries☆376Updated 6 months ago
- Binary Ninja plugin to analyze and simplify obfuscated code☆229Updated last month
- NovaHypervisor is a defensive x64 Intel host based hypervisor. The goal of this project is to protect against kernel based attacks (eithe…☆236Updated 2 months ago
- An x86-64 Code Virtualizer☆293Updated last year
- Obfuscator-llvm Control Flow Flattening Deobfuscator☆220Updated 7 months ago
- A high-performance C++ framework for emulating executable binaries☆127Updated last week
- ☆155Updated 2 weeks ago
- compile-time control flow obfuscation using mba☆199Updated 2 years ago
- C++ macro for x64 programs that breaks ida hex-rays decompiler tool.☆131Updated last year
- RISC-V Virtual Machine☆259Updated 5 months ago
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆158Updated last year
- Static deobfuscator for Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.☆311Updated last year
- Windows 11 24H2-25H2 Runtime PatchGuard Bypass☆215Updated last month
- An x86-64 code virtualizer for VM based obfuscation☆146Updated 11 months ago
- A tool that is used to hunt vulnerabilities in x64 WDM drivers☆414Updated last week
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆240Updated last year
- LLVM based static binary analysis framework☆275Updated 8 months ago
- A C compiler targeting an artistically pleasing nightmare for reverse engineers☆101Updated 11 months ago
- bypassing intel txt's tboot integrity checks via coreboot shim☆83Updated 8 months ago
- Collection of hypervisor detections☆278Updated last year
- Debugger Anti-Detection Benchmark☆377Updated 3 months ago
- A Qt-based CyberChef interface designed for malware analysis workflows, particularly in IDA Pro☆71Updated last month
- A collection of Proof-of-Concept implementations of various anti-disassembly techniques for ARM32 and ARM64 architectures.☆72Updated 7 months ago
- Windows kernel debugger for Linux hosts running Windows under KVM/QEMU☆99Updated 6 months ago
- Code proving a 25-year blind spot in all disassemblers. PoC for Intel x64/x86 “ghost instructions.”☆106Updated last month
- Easy-to-use IDA plugin for code emulation☆43Updated this week
- Rust symbol recovery tool☆75Updated 5 months ago
- x86-64 code/pe virtualizer☆202Updated last year
- dynamic binary instrumentation, analysis, and patching framework☆98Updated 2 months ago