VirtualDeobfuscator
Deobfuscator
Analyzes malware runtraces to remove virtual machine-based protections and extract the original binary's bytecode instructions
Reverse engineering tool for virtualization wrappers
133 stars
7 watching
24 forks
Language: Python
last commit: about 1 year ago
Linked from 1 awesome list
rshipp/awesome-malware-analysisRelated projects:
| Repository | Description | Stars |
|---|---|---|
 mrphrazer/hitb2021ams_deobfuscation | Automated deobfuscation of malware code using symbolic execution and simplification techniques | 71 |
| mrphrazer/r2con2020_deobfuscation | Automated deobfuscation tool using symbolic execution and SMT solving to remove obfuscated code from malware | 76 |
 alxs009/panda-deobfuscator | A tool for analyzing and deobfuscating binary executables by manipulating their code and data structures | 5 |
 ioncodes/beeless | A tool used to deobfuscate Unity3D games by reversing the transformation of their code into an unreadable format. | 53 |
 eset/stadeo | An analysis toolset designed to understand and reverse-engineer malicious software using control-flow-flattening and string deobfuscation techniques. | 147 |
 dissectmalware/batch_deobfuscator | Deobfuscates batch scripts by substituting encoded strings and escaping characters. | 145 |
 gdbinit/evilquest_deobfuscator | A tool for decrypting strings from the EvilQuest/ThiefQuest malware family. | 6 |
 perimeterx/restringer | A tool to deobfuscate and simplify JavaScript code | 336 |
 reb311ion/replica | An enhancement tool for Ghidra's binary analysis capabilities | 287 |
 notprab/.net-deobfuscator | A collection of tools and deobfuscators for .NET assemblies | 1,256 |
 johnhammond/vbe-decoder | Decodes encoded VBScript files by removing obfuscation markers. | 184 |
 xenocoderce/dnpdeobfuscator | Deobfuscation tool for .NET patching applications | 24 |
 bonnetn/vba-obfuscator | A tool to protect VBA macros by obfuscating their code to evade antivirus signatures | 150 |
| dissectmalware/xlmmacrodeobfuscator | Decodes and deobfuscates obfuscated Excel macros from various file formats. | 572 |
 detuxsandbox/detux | Analyzes and captures malware traffic on Linux sandboxed environments using QEMU hypervisor and various CPU architectures. | 260 |