Alternatives and similar repositories for VM_Analyze

Users that are interested in VM_Analyze are comparing it to the libraries listed below

• Chordp / PatternGen
  ☆101Updated 3 years ago
• Tai7sy / NoVmp
  A static devirtualizer for VMProtect x64 3.x. powered by VTIL.
  ☆24Updated 3 months ago
• DragonQuestHero / WindowsKernelPrivateSymbolsDump
  Win7内核私有符号结构转储
  ☆70Updated 4 years ago
• stonedreamforest / Navy_public
  轻量级自动分析病毒程序调用上下文、游戏反调试实现技术平台
  ☆99Updated 5 years ago
• zzhouhe / PG1903
  ☆116Updated 6 years ago
• dulong-lab / video-virtual-memory-materials
  《关于编写 x64 Windows 10 驱动以了解虚拟内存这件事》系列视频附带的代码和材料
  ☆104Updated 2 years ago
• yodamaster / xspy
  If you are cracking a mfc program, you may find this useful.
  ☆70Updated 12 years ago
• KelvinMsft / ThreadSpy
  ☆160Updated 4 years ago
• IcEy-999 / Ntoskrnl_Viewer
  可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。
  ☆110Updated 3 years ago
• DNLINYJ / DetectVMP3
  A POC to detect the exist of VMProtect 3 protection by search feature watermark.
  ☆81Updated last year
• WINGS2709 / VMProtect1.21
  Vmp1.21加壳机分析笔记
  ☆42Updated 4 years ago
• omgkaka / vmp_runner
  A general solution to simulate execution of virtualized instructions (vmprotect/themida, etc.).
  ☆75Updated 3 years ago
• smallzhong / KernelHook
  一个用来做windows内核hook的框架
  ☆178Updated 5 months ago
• Hipepper / antiVM
  Ida pro plugin. The antiVM aims to quickly identify anti-virtual machine and anti-sandbox behavior. This can speed up malware analysis.
  ☆42Updated 3 years ago
• cbwang505 / unicorn-whpx
  跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式…
  ☆70Updated last year
• ilovecsad / Ark
  ☆80Updated 3 years ago
• DragonQuestHero / WindowsSyscallsEx
  Quick check of NT kernel exported&unexported functions/global variable offset NT内核导出以及未导出函数+全局变量偏移速查
  ☆97Updated 2 years ago
• notify-bibi / ScyllaHide-IDA7.5
  ScyllaHide for IDA7.5; ScyllaHide IDA7.5; It is a really niccccccce anti-anti-debug tool
  ☆206Updated 4 years ago
• YanStar / FixVmpDump
  use python script to fix vmp dump api in ida
  ☆120Updated 4 years ago
• fIappy / infhook19041
  ☆125Updated 5 years ago
• gajiucai-r0-MrCHEN / KanXue-MrChen-melon
  鹅城的百姓不需要有青天大老爷，于是黄四郎就出手干掉了很多好县长。
  ☆27Updated 2 years ago
• qq1045551070 / VtToMe
  之前学习X64VT写的代码，很多坑，但是大体的逻辑还是完整的。现发出来给更多想学VT的人参考...
  ☆70Updated 4 years ago
• NoHeart2019 / KasR3Hook
  使用 Intel 虚拟化特性实现应用层HOOK
  ☆63Updated 3 weeks ago
• Jhinxs / ntoskrnl
  收集常用windows版本内核文件
  ☆34Updated 2 years ago
• Oxygen1a1 / DrvMon
  a monitoring windows driver calls kernel api tools
  ☆121Updated last year
• zzhouhe / VT_Learn
  ☆156Updated 6 years ago
• liangfei44 / VmWareThrough
  ☆215Updated 2 years ago
• huoji120 / MakeInfinityHookGreatAgain
  让Etwhook再次伟大! Make InfinityHook Great Again!
  ☆143Updated 4 years ago
• FaEryICE / MemScanner
  Analyze Windows x64 Kernel Memory Layout
  ☆124Updated 4 years ago
• fjqisba / VB-Helper
  用来辅助分析VB程序的IDA插件
  ☆24Updated 4 years ago