theo-abel / awesome-anti-virtualizationLinks
A curated list of awesome resources related to anti virtualization techniques
☆51Updated last month
Alternatives and similar repositories for awesome-anti-virtualization
Users that are interested in awesome-anti-virtualization are comparing it to the libraries listed below
Sorting:
- Windows kernel debugger for Linux hosts running Windows under KVM/QEMU☆81Updated last week
- bypassing intel txt's tboot integrity checks via coreboot shim☆67Updated 2 months ago
- A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.☆80Updated 10 months ago
- An x64dbg plugin which helps make sense of long C++ symbols☆59Updated 2 years ago
- C++ macro for x64 programs that breaks ida hex-rays decompiler tool.☆116Updated last year
- Windows kernel driver template for cmkr (with testsigning).☆33Updated last year
- devirtualization vmprotect☆62Updated 2 years ago
- ☆89Updated 3 months ago
- Modular and extensible library for Virtual Machine Introspection☆103Updated 2 weeks ago
- Report and exploit of CVE-2023-36427☆90Updated last year
- Generate a PDB file given the old PDB file and an address mapping☆48Updated 2 months ago
- Collaboration platform for reverse engineering tools.☆40Updated 5 months ago
- The Windbg extensions to study Hyper-V on Intel and AMD processors.☆153Updated 2 months ago
- Plugin interface for remote communications with Binary Ninja database and MCP server for interfacing with LLMs.☆32Updated 2 weeks ago
- reverse engineering of the windows nt kernel debugger protocol & reimplementation.☆25Updated 11 months ago
- Research-focused hypervisor offering advanced tools for debugging, virtual machine introspection, and automation.☆20Updated 3 weeks ago
- ☆139Updated 3 weeks ago
- A set of LLVM and GCC based plugins that perform code obfuscation.☆123Updated 2 weeks ago
- WinDbg extension written in Rust to dump the CPU / memory state of a running VM☆117Updated 2 weeks ago
- SMM UEFI module and client for UMD privilege escalation☆46Updated this week
- Binary Ninja plugin to analyze and simplify obfuscated code☆56Updated last week
- uefi diskless persistence technique + OVMF secureboot bypass☆80Updated last year
- Header-only C++ library for producing PE files.☆33Updated last year
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆65Updated last year
- All LLVM binaries scrambled with SigBreaker and used to test against llvm-lit☆16Updated 3 weeks ago
- Lightweight PDB symbol parser and resolver☆24Updated 7 months ago
- compile-time control flow obfuscation using mba☆185Updated last year
- A high-performance C++ framework for emulating executable binaries☆99Updated last week
- ☆90Updated last year
- Report and exploit of CVE-2024-21305.☆34Updated last year