Alternatives and similar repositories for anti-analysis-tricks:

Users that are interested in anti-analysis-tricks are comparing it to the libraries listed below

• BromiumLabs / PackerAttacker
  C++ application that uses memory and code hooks to detect packers
  ☆270Updated 7 years ago
• Cisco-Talos / ROPMEMU
  ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks.
  ☆284Updated 8 years ago
• ivildeed / vmw_vmx_overloader
  Loading unsigned code into kernel in Windows 10 (64) with help of VMware Workstation Pro/Player design flaw
  ☆135Updated 7 years ago
• DavidKorczynski / RePEconstruct
  ☆91Updated 8 years ago
• therealdreg / anticuckoo
  A tool to detect and crash Cuckoo Sandbox
  ☆292Updated 8 months ago
• K2 / EhTrace
  ATrace is a tool for tracing execution of binaries on Windows.
  ☆237Updated 8 years ago
• kokjo / universalrop
  Small tool for generating ropchains using unicorn and z3
  ☆197Updated 7 years ago
• mandiant / flare-dbg
  flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.
  ☆150Updated 7 years ago
• IOActive / I-know-where-your-page-lives
  I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016
  ☆163Updated 8 years ago
• cseagle / fREedom
  capstone based disassembler for extracting to binnavi
  ☆227Updated 8 years ago
• codypierce / hackers-grep
  hackers-grep is a utility to search for strings in PE executables including imports, exports, and debug symbols
  ☆169Updated 6 years ago
• FSecureLABS / win_driver_plugin
  A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.
  ☆430Updated 6 years ago
• rwfpl / rewolf-gogogadget
  kernel exploitation helper class
  ☆76Updated 8 years ago
• AirbusCyber / grap
  grap: define and match graph patterns within binaries
  ☆170Updated 4 years ago
• xorpd / idsearch
  A search tool for IDA
  ☆70Updated 8 years ago
• hugsy / binja-retdec
  Binary Ninja plugin to decompile binaries using RetDec API
  ☆162Updated 6 years ago
• lifting-bits / codereason
  Semantic Binary Code Analysis Framework
  ☆125Updated 9 years ago
• carlosgprado / JARVIS
  "Just Another ReVersIng Suite" or whatever other bullshit you can think of
  ☆150Updated last year
• intezer / MemoryPatchDetector
  Detects code differentials between executables in disk and the corresponding processes/modules in memory
  ☆115Updated 4 years ago
• Darkabode / zerokit
  Zerokit/GAPZ rootkit (non buildable and only for researching)
  ☆182Updated 5 years ago
• bee13oy / AV_Kernel_Vulns
  Pocs for Antivirus Software‘s Kernel Vulnerabilities
  ☆263Updated 7 years ago
• jeffball55 / rop_compiler
  An open source, multi-architecture ROP compiler written in python
  ☆161Updated 7 years ago
• mothran / unicorn-decoder
  Simple shellcode decoder using unicorn-engine
  ☆99Updated 9 years ago
• antire-book / antire_book
  Example code from "Programming Linux Anti-Reversing Techniques"
  ☆97Updated 8 years ago
• szimeus / evalyzer
  Using WinDBG to tap into JavaScript and help with deobfuscation and browser exploit detection
  ☆81Updated 8 years ago
• clymb3r / KdExploitMe
  A kernel driver to practice writing exploits against, as well as some example exploits using public techniques.
  ☆403Updated 10 years ago
• sogeti-esec-lab / LKD
  Local Kernel Debugger (LKD) is a python wrapper around dbgengine.dll
  ☆92Updated 8 years ago
• hasherezade / shellconv
  Small tool for disassembling shellcode (using objdump)
  ☆146Updated 2 years ago
• hfiref0x / ZeroAccess
  ZeroAccess v3 toolkit
  ☆164Updated 7 years ago
• MalwareTech / BasicHook
  x86 Inline hooking engine (using trampolines)
  ☆96Updated 10 years ago