Alternatives and similar repositories for anti-analysis-tricks:

Users that are interested in anti-analysis-tricks are comparing it to the libraries listed below

• Cisco-Talos / ROPMEMU
  ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks.
  ☆284Updated 8 years ago
• DavidKorczynski / RePEconstruct
  ☆91Updated 8 years ago
• cseagle / fREedom
  capstone based disassembler for extracting to binnavi
  ☆227Updated 8 years ago
• BromiumLabs / PackerAttacker
  C++ application that uses memory and code hooks to detect packers
  ☆270Updated 6 years ago
• xorpd / idsearch
  A search tool for IDA
  ☆69Updated 8 years ago
• kokjo / universalrop
  Small tool for generating ropchains using unicorn and z3
  ☆197Updated 6 years ago
• lifting-bits / codereason
  Semantic Binary Code Analysis Framework
  ☆125Updated 9 years ago
• IOActive / I-know-where-your-page-lives
  I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016
  ☆161Updated 8 years ago
• rwfpl / rewolf-gogogadget
  kernel exploitation helper class
  ☆76Updated 8 years ago
• AirbusCyber / grap
  grap: define and match graph patterns within binaries
  ☆170Updated 3 years ago
• ivildeed / vmw_vmx_overloader
  Loading unsigned code into kernel in Windows 10 (64) with help of VMware Workstation Pro/Player design flaw
  ☆135Updated 7 years ago
• szimeus / evalyzer
  Using WinDBG to tap into JavaScript and help with deobfuscation and browser exploit detection
  ☆81Updated 7 years ago
• Rootkitsmm-zz / Win32k-Fuzzer
  Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )
  ☆132Updated 9 years ago
• codypierce / hackers-grep
  hackers-grep is a utility to search for strings in PE executables including imports, exports, and debug symbols
  ☆169Updated 6 years ago
• K2 / EhTrace
  ATrace is a tool for tracing execution of binaries on Windows.
  ☆236Updated 8 years ago
• gdelugre / shell-factory
  C++-based shellcode builder
  ☆112Updated 4 years ago
• therealdreg / anticuckoo
  A tool to detect and crash Cuckoo Sandbox
  ☆290Updated 6 months ago
• bee13oy / AV_Kernel_Vulns
  Pocs for Antivirus Software‘s Kernel Vulnerabilities
  ☆263Updated 7 years ago
• BreakingMalware / Selfie
  A Tool to Unpack Self-Modifying Code using DynamoRIO
  ☆141Updated 7 years ago
• FSecureLABS / win_driver_plugin
  A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.
  ☆426Updated 6 years ago
• hugsy / binja-retdec
  Binary Ninja plugin to decompile binaries using RetDec API
  ☆162Updated 6 years ago
• karttoon / shellbug
  Basic command line, text-based, shellcode debugger.
  ☆92Updated 7 years ago
• jeffball55 / rop_compiler
  An open source, multi-architecture ROP compiler written in python
  ☆161Updated 7 years ago
• mandiant / flare-dbg
  flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.
  ☆150Updated 7 years ago
• clymb3r / KdExploitMe
  A kernel driver to practice writing exploits against, as well as some example exploits using public techniques.
  ☆403Updated 10 years ago
• mothran / unicorn-decoder
  Simple shellcode decoder using unicorn-engine
  ☆98Updated 9 years ago
• PyAna / PyAna
  PyAna - Analyzing the Windows shellcode
  ☆247Updated 9 years ago
• mokhdzanifaeq / pyflirt
  map file generator for intel x86 binary based on flirt signature
  ☆83Updated 8 years ago
• deresz / unpacking
  Some tutorials and examples for generic unpacking JAVA, .NET and x86/x64 code
  ☆50Updated 8 years ago
• tandasat / scripts_for_RE
  Python scripts for reverse engineering.
  ☆182Updated 3 years ago