Giters

ergrelet / themida-spotter-bn

A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

binary-ninja-plugincode-virtualizerthemidawinlicenserust

themida-spotter-bn Static Badge rustc 1.79.0

A Binary Ninja plugin that detects and tags obfuscated code entry patterns from Oreans Technologies's software obfuscators (i.e., WinLicense, Themida and Code Virtualizer), in order to help reverse engineers focus on interesting code.

Screenshot

Supported Targets

The plugin has been tested on x86 and x86_64 executables protected with Oreans's products up to version 3.1.9.

How to Build

git clone https://github.com/ergrelet/themida-spotter-bn && cd themida-spotter-bn
cargo build --release

The plugin will then be available at target/release/themida_spotter_bn.dll if you're on Windows for example.

How to Install

Check out the official Binary Ninja documentation to know where to copy the files: Using Plugins

About

A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.

binary-ninja-plugincode-virtualizerthemidawinlicenserust

License:GNU General Public License v3.0

Languages

Language:Rust 100.0%