ropfuscator
nimcrypt
ropfuscator | nimcrypt | |
---|---|---|
5 | 1 | |
398 | 89 | |
0.0% | - | |
3.2 | 10.0 | |
7 days ago | about 3 years ago | |
C++ | Nim | |
GNU General Public License v3.0 or later | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
ropfuscator
-
Bypassing Windows Defender (10 Ways)
ropfuscator (sadly only for Linux at the moment)
- Show HN: ROPfuscator – ROP Obfuscator
- ROPfuscator: ROP Obfuscator
- Ropfuscator: ROPfuscator is a fine-grained code obfuscation framework for C/C++ programs using ROP (return-oriented programming).
- GitHub - ropfuscator/ropfuscator: ROPfuscator is a fine-grained code obfuscation framework for C/C++ programs using ROP (return-oriented programming).
nimcrypt
-
Bypassing Windows Defender (10 Ways)
Moreover, a PE Crypter works by encrypting the executable's contents and generating an executable that will decrypt the original PE at runtime. This is very useful against AVs as most of them rely on static analysis instead of runtime behaviour (like EDRs). So completely hiding the content of an executable until runtime may be very effective, unless the AV has generated signatures against the Encrypting/Decrypting methods, which is the case from what I tried with nimpcrypt.
What are some alternatives?
Hikari-LLVM15 - A fork of Hikari Obfuscator [WIP]
Alcatraz - x64 binary obfuscator
powershell
LLVM-Guide - LLVM (Low Level Virtual Machine) Guide. Learn all about the compiler infrastructure, which is designed for compile-time, link-time, run-time, and "idle-time" optimization of programs. Originally implemented for C/C++ , though, has a variety of front-ends, including Java, Python, etc.
obfy - A tiny C++ obfuscation framework
upx - UPX - the Ultimate Packer for eXecutables
opencilk-project - Monorepo for the OpenCilk compiler. Forked from llvm/llvm-project and based on Tapir/LLVM.
metame - metame is a metamorphic code engine for arbitrary executables
rp - rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.
PowerSharpPack