Debugger Anti-Detection Benchmark

Hooking Windows' exception dispatcher to protect process's PML4

ZMQ and Messagepack Powered Remote Automation Plugin for x64dbg

Java Dynamic Reverse Engineering and Debugging Tool

WinVisor - A hypervisor-based emulator for Windows x64 user-mode executables using Windows Hypervisor Platform API

The official angr GUI.

DelphiHelper is a python IDA Pro plugin aiming to help the analysis of x86/x86_64 binaries written in Delphi programming language.

An intuitive query API for IDA Pro

A patch to hide qemu itself, bypass mhyprot,EAC,nProtect / VMProtect,VProtect, Themida, Enigma Protector,Safegine Shielden

x86-64 Assembler based on Zydis

Helper scripts for analyzing NativeAOT compiled .NET binaries with Ghidra

Modular and extensible library for Virtual Machine Introspection

使用 Intel 虚拟化特性实现应用层HOOK

🪅 Windows User Space Emulator

Apple Silicon devices emulated on QEMU, currently only iPhone 11.

Framework to automate working with AST in IDA Pro

A PlayStation 4 Kernel Debugger [WIP]

Python utility for parsing Xamarin AssemblyStore blob files

Class Informer updated for 32bit targets in 64bit IDA 8.2+/9.0/9.1

Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).

Makes IDA (most versions) to crash upon opening it.

IDAPython tool for creating automatic C++ virtual tables in IDA Pro

Security Research from the Microsoft Security Response Center (MSRC)

Collaborative Reverse Engineering plugin for IDA Pro & Hex-Rays

An AVX Lifter for the Hex-Rays Decompiler

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

Repository for a library focused on binary analysis (mainly for Java related bytecodes)

Windows Anti-Rootkit Tool

Symbol Recovery Tool for Nuitka Binaries