Alternatives and similar repositories for awesome-anti-virtualization

Users that are interested in awesome-anti-virtualization are comparing it to the libraries listed below

• dmaivel / ntoseye
  Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
  ☆93Updated 3 months ago
• vmsplit / checkm8
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆80Updated 5 months ago
• thalium / vminer
  ☆88Updated 6 months ago
• ergrelet / themida-spotter-bn
  A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.
  ☆82Updated last year
• m417z / x64dbg-symbol-tldr
  An x64dbg plugin which helps make sense of long C++ symbols
  ☆59Updated 2 years ago
• mrphrazer / obfuscation_analysis
  Binary Ninja plugin to analyze and simplify obfuscated code
  ☆163Updated 2 months ago
• android1337 / brkida
  C++ macro for x64 programs that breaks ida hex-rays decompiler tool.
  ☆128Updated last year
• poppopjmp / VMDragonSlayer
  Automated multi-engine framework for unpacking, analyzing, and devirtualizing binaries protected by commercial and custom Virtual Machine…
  ☆119Updated this week
• tandasat / hvext
  The Windbg extensions to study Hyper-V on Intel and AMD processors.
  ☆156Updated this week
• Invoke-RE / binja-lattice-mcp
  Plugin interface for remote communications with Binary Ninja database and MCP server for interfacing with LLMs.
  ☆42Updated 3 months ago
• sterrasec / anti-disassembly-poc
  A collection of Proof-of-Concept implementations of various anti-disassembly techniques for ARM32 and ARM64 architectures.
  ☆73Updated 4 months ago
• Internet-2-0 / Malcore-x64dbg
  This x64dbg plugin allows you to upload your sample to Malcore and view the results.
  ☆37Updated 2 years ago
• backengineering / pdbgen2
  Generate a PDB file given the old PDB file and an address mapping
  ☆49Updated 3 weeks ago
• redthing1 / w1tn3ss
  dynamic binary instrumentation, analysis, and patching framework
  ☆93Updated this week
• h311d1n3r / Arion
  A high-performance C++ framework for emulating executable binaries
  ☆101Updated 2 weeks ago
• Idov31 / NovaHypervisor
  NovaHypervisor is a defensive x64 Intel host based hypervisor. The goal of this project is to protect against kernel based attacks (eithe…
  ☆223Updated last month
• AaLl86 / WindowsInternals
  Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book
  ☆112Updated last year
• ssnob / hidden_syscall_monitoring
  monitors hidden syscalls called from call of duty anticheat
  ☆83Updated 7 months ago
• Fatmike-GH / DLLInjectionDetector
  A DLL Injection Detector for Windows
  ☆66Updated 2 months ago
• Vector35 / scc
  ☆152Updated last month
• badhive / stitch
  Rewrite and obfuscate code in compiled binaries
  ☆223Updated last week
• x64dbg / DataExplorer
  The DataExplorer plugin integrates the pattern language from ImHex into x64dbg.
  ☆84Updated 7 months ago
• D4stiny / ExceptionOrientedProgramming
  Abusing exceptions for code execution.
  ☆111Updated 2 years ago
• Fatmike-GH / Fatpack
  A Windows executable (PE) packer (x64) with LZMA compression and with full TLS (Thread Local Storage) support
  ☆75Updated 2 months ago
• vmi-rs / vmi
  Modular and extensible library for Virtual Machine Introspection
  ☆108Updated 2 weeks ago
• rand-tech / pcm
  MCP for reverse engineering
  ☆44Updated 5 months ago
• behnamshamshirsaz / CrackMaster
  x86/x64 Ring 0/-2 System Freezer/Debugger
  ☆119Updated 3 months ago
• MrRoy09 / VMwhere
  LLVM based obfuscation engine
  ☆98Updated 2 months ago
• rce-3 / xenith
  Research-focused hypervisor offering advanced tools for debugging, virtual machine introspection, and automation.
  ☆38Updated last week
• h311d1n3r / HadesDbg
  The Linux x86/x86-64 last chance debugging tool
  ☆47Updated 2 years ago