zzhouhe / VM_Analyze
☆81Updated 4 years ago
Alternatives and similar repositories for VM_Analyze:
Users that are interested in VM_Analyze are comparing it to the libraries listed below
- ☆97Updated 3 years ago
- 轻量级自动分析病毒程序调用上下文、游戏反调试实现技术平台☆99Updated 4 years ago
- ☆110Updated 5 years ago
- Win7内核私有符号结构转储☆67Updated 3 years ago
- A static devirtualizer for VMProtect x64 3.x. powered by VTIL.☆22Updated 2 years ago
- ☆80Updated 3 years ago
- 跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式…☆66Updated last year
- 可在��非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。☆108Updated 2 years ago
- 使用 Intel 虚拟化特性实现应用层HOOK☆60Updated 2 months ago
- 一个用来做windows内核hook的框架☆116Updated last week
- ida提取特征码脚本☆55Updated 5 years ago
- Intel Virtualization Technology demo☆65Updated 8 years ago
- 收集常用windows版本内核文件☆32Updated last year
- 之前学习X64VT写的代码,很多坑,但是大体的逻辑还是完整的。现发出来给更多想学VT的人参考...☆68Updated 4 years ago
- ☆159Updated 4 years ago
- Quick check of NT kernel exported&unexported functions/global variable offset NT内核导出以及未导出函数+全局变量偏移速查☆93Updated 2 years ago
- ☆124Updated 4 years ago
- ☆145Updated 6 years ago
- 大数字驱动逆向代码☆71Updated last year
- a plugin for ida of version 7.2 to help know F5 window codes better☆54Updated 5 years ago
- ☆132Updated 2 years ago
- Emulate Drivers in RING3 with self context mapping or unicorn☆29Updated 4 months ago
- A very simple C++ library for download pdb, get rva of function, global variable and offset from struct.☆140Updated last year
- vmp2.x devirtualization☆73Updated 6 months ago
- 鹅城的百姓不需要有青天大老爷,于是黄四郎就出手干掉了很多好县长。☆27Updated last year
- query-pdb is a server-side software for parsing PDB files. The software provides PDB online parsing service.☆150Updated 7 months ago
- ☆33Updated last year
- VMProtectTest☆35Updated 2 years ago
- If you are cracking a mfc program, you may find this useful.☆69Updated 11 years ago
- Reversing EasyAntiCheat.☆32Updated 6 years ago