redthing1 / w1tn3ssLinks
dynamic binary instrumentation, analysis, and patching framework
☆96Updated last month
Alternatives and similar repositories for w1tn3ss
Users that are interested in w1tn3ss are comparing it to the libraries listed below
Sorting:
- llvm powered deobfuscation of a vm-based protection☆43Updated 6 months ago
- Generate a PDB file given the old PDB file and an address mapping☆49Updated 2 months ago
- ☆60Updated 8 months ago
- Windows kernel debugger for Linux hosts running Windows under KVM/QEMU☆97Updated 5 months ago
- Disassembler for Zeus VM custom instruction set☆30Updated last year
- IDA Taskr is a pure Python library for IDA Pro related parallel computing. It lets you use the power of Qt (built-in to IDA!) and Python'…☆26Updated 4 months ago
- ntoskrnl.exe and bootmgfw.efi obfuscated with CodeDefender☆45Updated last week
- Rust library for lifting raw binary data to LLVM IR☆59Updated 3 months ago
- ☆25Updated 2 weeks ago
- an obfuscator based on LLVM which can obfuscate the program execution trajectory☆105Updated 4 years ago
- LLVM based obfuscation engine☆103Updated 4 months ago
- Yet another IDA Pro/Home plugin for deobfuscating stack strings☆99Updated 3 weeks ago
- devirtualization vmprotect☆62Updated 2 years ago
- LLVM obfuscation pass, flattening at the basic block's level and turning each basic block into a dispacher and each instruction into a ne…☆47Updated 4 years ago
- Rewrite and obfuscate code in compiled binaries☆261Updated last week
- Playing with LLVM passes☆37Updated 2 years ago
- A large collection of 32bit and 64bit PE files useful for verifying the correctness of bin2bin transformations☆60Updated last year
- A journal for $6,000 Riot Vanguard bounty.☆65Updated 2 years ago
- IDA Type Info Libraries for RE☆31Updated 9 months ago
- Easy-to-use IDA plugin for code emulation☆42Updated last month
- A collection of LLVM passes for obfuscating☆37Updated 2 years ago
- ☆22Updated 2 years ago
- C++ macro for x64 programs that breaks ida hex-rays decompiler tool.☆128Updated last year
- A set of LLVM and GCC based plugins that perform code obfuscation.☆132Updated last week
- bypassing intel txt's tboot integrity checks via coreboot shim☆83Updated 7 months ago
- breaking decompilers☆54Updated 5 months ago
- Symbolic Execution based on lifting amd64 to z3☆28Updated last year
- Hyper-V related resources☆31Updated last year
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆65Updated 2 years ago
- A collection of Proof-of-Concept implementations of various anti-disassembly techniques for ARM32 and ARM64 architectures.☆73Updated 6 months ago