zzhouhe / VM_Analyze
☆82Updated 4 years ago
Alternatives and similar repositories for VM_Analyze:
Users that are interested in VM_Analyze are comparing it to the libraries listed below
- A static devirtualizer for VMProtect x64 3.x. powered by VTIL.☆22Updated 2 years ago
- ☆96Updated 2 years ago
- 轻量级自动分析病毒程序调用上下文、游戏反调试实现技术平台☆99Updated 4 years ago
- ☆110Updated 5 years ago
- Win7内核私有符号结构转储☆68Updated 3 years ago
- 可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。☆107Updated 2 years ago
- ☆80Updated 3 years ago
- ☆156Updated 4 years ago
- 一个用来做windows内核hook的框架☆83Updated 11 months ago
- a monitoring windows driver calls kernel api tools☆103Updated 8 months ago
- ☆142Updated 6 years ago
- 之前学习X64VT写的代码,很多坑,但是大体的逻辑还是完整的。现发出来给更多想学VT的人参考...☆66Updated 3 years ago
- Quick check of NT kernel exported&unexported functions/global variable offset NT内核导出以及未导出函数+全局变量偏移速查☆93Updated last year
- ida提取特征码脚本☆55Updated 5 years ago
- 跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式…☆66Updated last year
- ☆123Updated 4 years ago
- Intel Virtualization Technology demo☆65Updated 8 years ago
- 鹅城的百姓不需要有青天大老爷,于是黄四郎就出手干掉了很多好县长。☆27Updated last year
- 使用 Intel 虚拟化特性实现应用层HOOK☆60Updated 3 weeks ago
- ☆197Updated 2 years ago
- 收集常用windows版本内核文件☆32Updated last year
- 《关于编写 x64 Windows 10 驱动以了解虚拟内存这件事》系列视频附带的代码和材料☆101Updated 2 years ago
- ☆128Updated 2 years ago
- an encryption library designed for Windows kernel and driver programming☆118Updated last year
- query-pdb is a server-side software for parsing PDB files. The software provides PDB online parsing service.☆149Updated 6 months ago
- A POC to detect the exist of VMProtect 3 protection by search feature watermark.☆77Updated last year
- Vmp1.21加壳机分析笔记☆40Updated 4 years ago
- 大数字驱动逆向代码☆71Updated last year
- use python script to fix vmp dump api in ida☆118Updated 4 years ago
- 一款64位Exe程序动态追踪执行流程以及保存信息的工具☆45Updated 4 months ago