CheckPointSW / InviZzzible
InviZzzible is a tool for assessment of your virtual environments in an easy and reliable way. It contains the most recent and up to date detection and evasion techniques as well as fixes for them.
☆549Updated 2 years ago
Alternatives and similar repositories for InviZzzible:
Users that are interested in InviZzzible are comparing it to the libraries listed below
- Quickly debug shellcode extracted during malware analysis☆595Updated last year
- Dynamic unpacker based on PE-sieve☆717Updated 2 weeks ago
- zer0m0n driver for cuckoo sandbox☆358Updated 9 years ago
- Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into ca…☆397Updated 8 months ago
- Demos of various injection techniques found in malware☆792Updated 3 years ago
- makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]☆738Updated 6 years ago
- ☆807Updated 5 years ago
- My implementation of enSilo's Process Doppelganging (PE injection technique)☆599Updated 2 years ago
- A static analyzer for PE executables.☆1,048Updated last year
- A memory scanning evasion technique☆861Updated 7 years ago
- Live hunting of code injection techniques☆379Updated 5 years ago
- DRAKVUF Black-box Binary Analysis☆1,100Updated last week
- PeaceMaker Threat Detection is a Windows kernel-based application that detects advanced techniques used by malware.☆419Updated 4 years ago
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆806Updated 3 years ago
- "Screwed Drivers" centralized information source for code references, links, etc.☆352Updated 5 years ago
- Incident Response & Digital Forensics Debugging Extension☆377Updated 6 years ago
- A Windows kernel-mode rootkit that abuses legitimate communication channels to control a machine.☆695Updated 4 years ago
- Obfuscate specific windows apis with different apis☆997Updated 4 years ago
- Portable Executable parsing library (from PE-bear)☆655Updated 7 months ago
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆569Updated this week
- Malduck is your ducky companion in malware analysis journeys☆326Updated 9 months ago
- Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…☆1,128Updated last year
- A tool to detect and crash Cuckoo Sandbox☆292Updated 8 months ago
- Generating YARA rules based on binary code☆207Updated 3 years ago
- Virtualbox, VirtualMachine, Cuckoo, Anubis, ThreatExpert, Sandboxie, QEMU, Analysis Tools Detection Tools☆450Updated 6 years ago
- RpcView is a free tool to explore and decompile Microsoft RPC interfaces☆961Updated last year
- Source from VMDE paper, adapted to 2015☆181Updated 7 years ago
- Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs☆736Updated last year
- Binee: binary emulation environment☆514Updated 2 years ago
- My notes while studying Windows internals☆418Updated 3 months ago