push0ebp / api-deobfuscator

Related projects: ⓘ

• saweol / vwaad
  IDA script for vmprotect Windows Api address decoder
  ☆51Updated 3 years ago
• Empier / MemoryEditor
  [C#]Main.exe < - > [C_DLL] < - > [C_KERNEL] = Memory_Editor via Kernel
  ☆31Updated 5 years ago
• fvrmatteo / DeobfuscatorTest
  ☆24Updated 8 years ago
• VertexToEdge / WindowFunctionTracer
  Window Executable file Function tracer using Debugging API
  ☆44Updated 4 years ago
• imugee / pegasus
  reverse engineering extension plugin for windbg
  ☆114Updated 4 years ago
• SinaKarvandi / x64-Driver-Inline-Assembly
  This is a simple driver with x64 inline assembly
  ☆52Updated 4 years ago
• Cr4sh / PTBypass-PoC
  Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.
  ☆72Updated 13 years ago
• push0ebp / xMalHunter
  x64dbg Malware Plugin. Detect malicious materials
  ☆14Updated 4 years ago
• chkpizza / runtime
  VEH Redirect & VEH Debugger
  ☆22Updated 4 years ago
• Rupan / idapin
  A debugger backend for IDA Pro built on top of of Intel’s PIN framework
  ☆29Updated 7 months ago
• tandasat / RemoteWriteMonitor
  A tool to help malware analysts tell that the sample is injecting code into other process.
  ☆73Updated 9 years ago
• ajkhoury / Windbg2Struct
  Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure
  ☆33Updated 2 months ago
• danielplohmann / empty_msvc
  A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.
  ☆30Updated 3 months ago
• Shhoya / Examples
  posting example
  ☆13Updated 4 years ago
• piotrflorczyk / cve-2018-8174_analysis
  Analysis of VBS exploit CVE-2018-8174
  ☆30Updated 6 years ago
• mrexodia / MiniDumpPlugin
  Simple x64dbg plugin to save a full memory dump
  ☆49Updated last year
• usualsuspect / ida_stuff
  ☆27Updated 6 years ago
• SouhailHammou / KernelSymbolsHelper
  Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…
  ☆52Updated 5 years ago
• hsheep / vmpanalysis
  VMProtect analysis script
  ☆54Updated 4 years ago
• bluefrostsecurity / Meltdown-KVA-Shadow-Leak
  ☆44Updated 4 years ago
• MeeSong / Sunstrider
  Analyze PatchGuard
  ☆53Updated 6 years ago
• zengfr / XrefsExt
  XrefsExt plugin for IDA Pro(idapython,ida plugin,ida plugins)
  ☆20Updated 3 weeks ago
• dro / win10-ida-types
  Windows 10 kernel and ntdll internal types, directly compatible with ida.
  ☆50Updated 5 years ago
• 1ce0ear / DllLoaderUnpacker
  ☆30Updated this week
• SinaKarvandi / windbg2ida
  Windbg2ida lets you dump each step in Windbg then shows these steps in IDA
  ☆70Updated 2 months ago
• mrexodia / VMProtectTest
  VMProtectTest
  ☆36Updated last year
• slimv0x00 / Adimeht
  A study on the automation of unpacking API wrapping in Themida
  ☆12Updated 6 years ago
• mq1n / VDM
  ☆16Updated this week
• oct0xor / highlight2
  IDA Pro plugin that changes color of call instructions and works with all architectures
  ☆56Updated 5 years ago
• mrphrazer / hitb2021ams_deobfuscation
  ☆71Updated 3 years ago