Skip to content
/ VmpHelper Public
forked from fjqisba/VmpHelper

an ida plugin used to decompile vmp

0 stars 71 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

greenozon/VmpHelper

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

33 Commits
Revampire
Revampire
 
 
.gitignore
.gitignore
 
 
CMakeLists.txt
CMakeLists.txt
 
 
README.md
README.md
 
 
cmake.toml
cmake.toml
 
 
cmkr.cmake
cmkr.cmake
 
 
graph.png
graph.png
 
 
sponsor.png
sponsor.png
 
 

Repository files navigation

VmpHelper

a vmp-analysis ida-plugin based on Ghidra, currently under development...

only supports Vmp3.5 x86

How to use

1、Place the Ghidra directory and Revampire.dll into the IDA plugin directory

2、Use ida to load demo.exe.

At 00401D7E,right click to pop up menu -> Revampire -> Mark as VmEntry

3、At 00401D70,right click to pop up menu -> Revampire -> Execute Vmp 3.5.0.

Then you may get a flow chart like the following:

graph

Reference

ghidra:https://github.com/NationalSecurityAgency/ghidra

unicorn:https://github.com/unicorn-engine/unicorn

capstone:https://github.com/capstone-engine/capstone

keystone:https://github.com/keystone-engine/keystone

z3:https://github.com/Z3Prover/z3

开发者交流QQ群:569821835

Sponsor this project

赞助

About

an ida plugin used to decompile vmp

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • C++ 96.5%
  • Yacc 2.2%
  • Other 1.3%