UlyssesWu
Follow
Internals
A newly programmed tool that will deobfuscate Agile.Net Obfuscation.
Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.
Inject .NET assemblies into an existing process
Black Obfuscator is an obfuscator for Android APK DexFile, it can help developer to protect source code by control flow flattening, and make it difficult to analyze the actual program control flow.
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Disables virtualprotect checks/hooks so you can modify memory and change memory protection in binaries protected by VMProtect.
A Proof-of-Concept implementation for Proxy Object Obfuscation in .NET
JADX-gui scripting plugin for dynamic decompiler manipulation
Devirtualizer for VirtualGuard Protector using AsmResolver
An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in general (sandboxing).
VMP 3.5 - VMP 3.7.2 Full Protect Anti Debugger Fuxker
gooMBA is a Hex-Rays Decompiler plugin to simplify Mixed Boolean-Arithmetic (MBA) expressions
Ghidra is a software reverse engineering (SRE) framework
Virtual-machine Translation Intermediate Language
🔑 (THIS CODE IS OUTDATED FOR NEW CHROME VERSIONS) Decrypt chromium based browsers passwords, cookies, credit cards, history, bookmarks, autofill. Version > 80 is supported.
C# Anti-Debug and Anti-Dumping techniques using Win32 API functions and tricks.
dProtect is a Proguard-based obfuscator for Java and Kotlin
A tool for extracting contents (assemblies, configuration, etc.) from a single-file application to a directory, suitable for purposes like malware analysis.
一个Android通用svc跟踪以及hook方案——Frida-Seccomp
VMProtect source code leak (incomplete, some important files are still missing, but you can still see it as a reference on how to virtualize the code)
Anti-De4dot safeguards .NET binaries from De4dot decompiler, protecting intellectual property from unauthorized access.