Giters
schnabel (schnabel0776)

schnabel0776

Geek Repo

1

followers

9

following

11

stars

Github PK Tool:Github PK Tool

schnabel's repositories

titan

Titan is a VMProtect devirtualizer

Stargazers:0Issues:0Issues:0

NVDrv

Abusing nvidia driver (nvoclock.sys) for physical/virtual memory and control register manipulation.

Stargazers:0Issues:0Issues:0

PongoOS

pongoOS

License:NOASSERTIONStargazers:0Issues:0Issues:0

bobalkkagi

Themida 3.x unpacking, unwrapping and devirtualization(future)

License:MITStargazers:0Issues:0Issues:0

KsDumper

Dumping processes using the power of kernel space !

License:MITStargazers:0Issues:0Issues:0

HyperHide

Hypervisor based anti anti debug plugin for x64dbg

License:MITStargazers:0Issues:0Issues:0

VMProtect-devirtualization

Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.

Stargazers:0Issues:0Issues:0

qiling

Qiling Advanced Binary Emulation Framework

License:GPL-2.0Stargazers:0Issues:0Issues:0

VirtualKD-Redux

VirtualKD-Redux - A revival and modernization of VirtualKD

License:LGPL-2.1Stargazers:0Issues:0Issues:0

volatility3

Volatility 3.0 development

License:NOASSERTIONStargazers:0Issues:0Issues:0

VMUnprotect

VMUnprotect can dynamically log and manipulate calls from virtualized methods by VMProtect.

License:MITStargazers:0Issues:0Issues:0

KasperskyHook

Hook system calls on Windows by using Kaspersky's hypervisor

License:MITStargazers:0Issues:0Issues:0

VMUnprotect.Dumper

VMUnprotect.Dumper can dynamically untamper VMProtected Assembly.

Stargazers:0Issues:0Issues:0

EagleVM

WIP Native code virtualizer for x64 binaries

Stargazers:0Issues:0Issues:0

vmp_runner

A general solution to simulate execution of virtualized instructions (vmprotect/themida, etc.).

Stargazers:0Issues:0Issues:0

pyc2bytecode

A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

Stargazers:0Issues:0Issues:0

gdrv-loader

Kernel driver loader using vulnerable gigabyte driver (https://www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-privilege-vulnerabilities) to load a unsigned driver

Stargazers:0Issues:0Issues:0

x64dbg_TraceExecLoggerPlugin

x64dbg plugin to log executions

Stargazers:0Issues:0Issues:0

evil-mhyprot-cli

A PoC for Mhyprot2.sys vulnerable driver that allowing read/write memory in kernel/user via unprivileged user process.

License:MITStargazers:0Issues:0Issues:0

injdrv

proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC

License:MITStargazers:0Issues:0Issues:0

execution-trace-viewer

Tool for viewing and analyzing execution traces

License:MITStargazers:0Issues:0Issues:0

vmpdump

A dynamic VMP dumper and import fixer, powered by VTIL.

License:GPL-3.0Stargazers:0Issues:0Issues:0

x86-Code-Virtualizer

x86 Binary Code Virtualization Tool

License:MITStargazers:0Issues:0Issues:0

drvmap

driver mapper / capcom wrapper

License:UnlicenseStargazers:0Issues:0Issues:0