zzhouhe / VM_Analyze
☆77Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for VM_Analyze
- A static devirtualizer for VMProtect x64 3.x. powered by VTIL.☆21Updated 2 years ago
- ☆92Updated 2 years ago
- 轻量级自动分析病毒程序调用上下文、游戏反调试实现技术平台☆96Updated 4 years ago
- ☆79Updated 2 years ago
- Win7内核私有符号结构转储☆64Updated 3 years ago
- ☆107Updated 5 years ago
- 可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。☆104Updated 2 years ago
- IDA Pro plugin AntiXorstr☆102Updated last year
- ☆150Updated 4 years ago
- 跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式…☆62Updated 10 months ago
- Vmp1.21加壳机分析笔记☆38Updated 3 years ago
- a monitoring windows driver calls kernel api tools☆92Updated 4 months ago
- 一个用来做windows内核hook的框架☆81Updated 6 months ago
- vmp2.x devirtualization☆61Updated this week
- 大数字驱动逆向代码☆65Updated last year
- Intel Virtualization Technology demo☆65Updated 8 years ago
- 之前学习X64VT写的代码,很多坑,但是大体的逻辑还是完整的。现发出来给更多想学VT的人参考...☆66Updated 3 years ago
- Forked LLVM focused on MSVC Compatibility. This version is designed for windows users☆75Updated 3 weeks ago
- VMProtectTest☆36Updated last year
- Quick check of NT kernel exported&unexported functions/global variable offset NT内核导出以及未导出函数+全局变量偏移速查☆91Updated last year
- use python script to fix vmp dump api in ida☆117Updated 3 years ago
- ☆125Updated last year
- Obfuscator-LLVM for LLVM 16.x branch☆185Updated last year
- A very simple C++ library for download pdb, get rva of function, global variable and offset from struct.☆110Updated 7 months ago
- ollvm de-obfuscator☆57Updated 3 years ago
- ☆183Updated last year
- query-pdb is a server-side software for parsing PDB files. The software provides PDB online parsing service.☆140Updated last month
- A general solution to simulate execution of virtualized instructions (vmprotect/themida, etc.).☆70Updated 2 years ago
- ☆121Updated 4 years ago