VxLang is a code or binary obfuscation project that prevents attackers from performing reverse engineering actions such as static or dynamic analysis, file tampering, and unauthorized access to memory. It currently targets Microsoft Windows PE executables (*.exe/*.dll/*.sys) on x86-64, with future support for Linux ELF and ARM.

  VxLang changes and encrypts the original file into the file format it uses internally, and executes the original binary with protection through its security engine. The security engine is a flexible structure that can be augmented and enhanced with extension modules. Users are free to extend the functionality and control the engine.

  While the security engine changes the format of the file itself and triggers detection, the code obfuscator tampers with the original code and changes it into a form that is harder to trace. Code obfuscation is done through the SDK and patches are applied in the file state, which can protect the original code and delay static analysis.

  Unlike code obfuscation, Code Virtualization does not operate on a physical CPU, but on a virtual CPU inside VxLang. Actual assembly code is replaced with VxLang assembly language, which is then recompiled and linked into an executable file to run. This makes it difficult to restore the original code and can delay analysis time.