Alternatives and similar repositories for VMDragonSlayer

Users that are interested in VMDragonSlayer are comparing it to the libraries listed below

• badhive / stitch
  Rewrite and obfuscate code in compiled binaries
  ☆264Updated 2 weeks ago
• x86byte / Obfusk8
  Obfusk8: lightweight Obfuscation library based on C++17 / Header Only for windows binaries
  ☆359Updated 5 months ago
• Idov31 / NovaHypervisor
  NovaHypervisor is a defensive x64 Intel host based hypervisor. The goal of this project is to protect against kernel based attacks (eithe…
  ☆235Updated last month
• ThatLing / limba
  compile-time control flow obfuscation using mba
  ☆199Updated 2 years ago
• mrphrazer / obfuscation_analysis
  Binary Ninja plugin to analyze and simplify obfuscated code
  ☆226Updated last month
• android1337 / brkida
  C++ macro for x64 programs that breaks ida hex-rays decompiler tool.
  ☆129Updated last year
• connorjaydunn / BinaryShield
  An x86-64 Code Virtualizer
  ☆287Updated last year
• NeoMaster831 / kurasagi
  Windows 11 24H2-25H2 Runtime PatchGuard Bypass
  ☆209Updated last week
• cdong1012 / ollvm-unflattener
  Obfuscator-llvm Control Flow Flattening Deobfuscator
  ☆214Updated 6 months ago
• Colton1skees / Dna
  LLVM based static binary analysis framework
  ☆272Updated 7 months ago
• vmsplit / checkm8
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆83Updated 8 months ago
• ergrelet / themida-unmutate
  Static deobfuscator for Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.
  ☆311Updated last year
• thesecretclub / riscy-business
  RISC-V Virtual Machine
  ☆255Updated 5 months ago
• dmaivel / covirt
  An x86-64 code virtualizer for VM based obfuscation
  ☆142Updated 10 months ago
• can1357 / hvdetecc
  Collection of hypervisor detections
  ☆274Updated last year
• Dump-GUY / IDA_PHNT_TYPES
  Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).
  ☆157Updated last year
• 3intermute / ramiel
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆94Updated last year
• zeze-zeze / ioctlance
  A tool that is used to hunt vulnerabilities in x64 WDM drivers
  ☆407Updated this week
• h311d1n3r / Arion
  A high-performance C++ framework for emulating executable binaries
  ☆128Updated last month
• Vector35 / scc
  ☆155Updated 3 months ago
• Xyrem / Yumekage
  Demo proof of concept for shadow regions, and implementation of HyperDeceit.
  ☆302Updated 2 years ago
• symeonp / Lenovo-CVE-2025-8061
  PoC for popping a system shell against the LnvMSRIO.sys driver
  ☆112Updated last month
• SamuelTulach / HookGuard
  Hooking Windows' exception dispatcher to protect process's PML4
  ☆206Updated 9 months ago
• sterrasec / anti-disassembly-poc
  A collection of Proof-of-Concept implementations of various anti-disassembly techniques for ARM32 and ARM64 architectures.
  ☆73Updated 6 months ago
• sapdragon / hint-break
  Code proving a 25-year blind spot in all disassemblers. PoC for Intel x64/x86 “ghost instructions.”
  ☆103Updated last week
• meowette / guardian-rs
  x86-64 code/pe virtualizer
  ☆202Updated 11 months ago
• dmaivel / ntoseye
  Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
  ☆98Updated 5 months ago
• 0x1c1101 / blazing_asm
  Simple, fast and lightweight Header-Only C++ Assembler Library
  ☆129Updated 3 months ago
• codedefender-io / windows
  ntoskrnl.exe and bootmgfw.efi obfuscated with CodeDefender
  ☆49Updated 3 weeks ago
• redthing1 / w1tn3ss
  dynamic binary instrumentation, analysis, and patching framework
  ☆95Updated last month