Alternatives and similar repositories for VM_Analyze

Users that are interested in VM_Analyze are comparing it to the libraries listed below

• Chordp / PatternGen
  ☆102Updated 3 years ago
• Tai7sy / NoVmp
  A static devirtualizer for VMProtect x64 3.x. powered by VTIL.
  ☆24Updated 6 months ago
• DragonQuestHero / WindowsKernelPrivateSymbolsDump
  Win7内核私有符号结构转储
  ☆69Updated 4 years ago
• stonedreamforest / Navy_public
  轻量级自动分析病毒程序调用上下文、游戏反调试实现技术平台
  ☆100Updated 5 years ago
• cbwang505 / unicorn-whpx
  跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式…
  ☆78Updated 2 years ago
• IcEy-999 / Ntoskrnl_Viewer
  可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。
  ☆107Updated 3 years ago
• zzhouhe / PG1903
  ☆116Updated 6 years ago
• NoHeart2019 / KasR3Hook
  使用 Intel 虚拟化特性实现应用层HOOK
  ☆64Updated 4 months ago
• yodamaster / xspy
  If you are cracking a mfc program, you may find this useful.
  ☆72Updated 12 years ago
• KelvinMsft / ThreadSpy
  ☆163Updated 5 years ago
• DNLINYJ / DetectVMP3
  A POC to detect the exist of VMProtect 3 protection by search feature watermark.
  ☆84Updated 2 years ago
• smallzhong / KernelHook
  一个用来做windows内核hook的框架
  ☆186Updated 8 months ago
• ilovecsad / Ark
  ☆81Updated 3 years ago
• YanStar / FixVmpDump
  use python script to fix vmp dump api in ida
  ☆120Updated 4 years ago
• Oxygen1a1 / DrvMon
  a monitoring windows driver calls kernel api tools
  ☆123Updated last year
• dulong-lab / video-virtual-memory-materials
  《关于编写 x64 Windows 10 驱动以了解虚拟内存这件事》系列视频附带的代码和材料
  ☆105Updated 2 years ago
• gajiucai-r0-MrCHEN / KanXue-MrChen-melon
  鹅城的百姓不需要有青天大老爷，于是黄四郎就出手干掉了很多好县长。
  ☆27Updated 2 years ago
• fIappy / infhook19041
  ☆126Updated 5 years ago
• qq1045551070 / VtToMe
  之前学习X64VT写的代码，很多坑，但是大体的逻辑还是完整的。现发出来给更多想学VT的人参考...
  ☆71Updated 4 years ago
• FaEryICE / MemScanner
  Analyze Windows x64 Kernel Memory Layout
  ☆128Updated 5 years ago
• DragonQuestHero / WindowsSyscallsEx
  Quick check of NT kernel exported&unexported functions/global variable offset NT内核导出以及未导出函数+全局变量偏移速查
  ☆97Updated 2 years ago
• Jhinxs / ntoskrnl
  收集常用windows版本内核文件
  ☆35Updated 2 years ago
• VMProtectResearch / vmp2-devirtualization
  vmp2.x devirtualization
  ☆89Updated last year
• huoji120 / MakeInfinityHookGreatAgain
  让Etwhook再次伟大! Make InfinityHook Great Again!
  ☆147Updated 4 years ago
• lstaroth / AntiXorstr
  IDA Pro plugin AntiXorstr
  ☆151Updated 10 months ago
• wanttobeno / IDASignMaker
  IDA高级技巧 API符号自动识别库 IDASignMaker
  ☆143Updated 5 years ago
• bigBestWay / CodeObfs
  LLVM based "VM" obfuscator
  ☆150Updated 4 years ago
• omgkaka / vmp_runner
  A general solution to simulate execution of virtualized instructions (vmprotect/themida, etc.).
  ☆77Updated 3 years ago
• notify-bibi / ScyllaHide-IDA7.5
  ScyllaHide for IDA7.5; ScyllaHide IDA7.5; It is a really niccccccce anti-anti-debug tool
  ☆207Updated 4 years ago
• smallzhong / kernel_monitor
  一个windows内核驱动分析框架，对内核所有导出函数进行挂钩监控
  ☆68Updated last month