Alternatives and similar repositories for anti-anti-vm-detection-dll-1:

Users that are interested in anti-anti-vm-detection-dll-1 are comparing it to the libraries listed below

• NtRaiseHardError / Dreadnought
  PoC for detecting and dumping code injection (built and extended on UnRunPE)
  ☆56Updated 6 years ago
• NtRaiseHardError / UnRunPE
  PoC for detecting and dumping process hollowing code injection
  ☆51Updated 6 years ago
• tandasat / RemoteWriteMonitor
  A tool to help malware analysts tell that the sample is injecting code into other process.
  ☆77Updated 9 years ago
• OsandaMalith / ApiMon
  A simple API monitor for Windbg
  ☆63Updated 7 years ago
• sysopfb / Unpackers
  My collection of unpackers for malware packers/crypters
  ☆28Updated 7 years ago
• BreakingMalwareResearch / CFGExceptions
  Adding exceptions to Microsoft's Control Flow Guard (CFG)
  ☆58Updated 8 years ago
• benoitsevens / applying-ttd-to-malware-analysis
  Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019
  ☆40Updated 5 years ago
• maldevel / driver-loader
  Load a Windows Kernel Driver
  ☆92Updated 7 years ago
• marcusbotacin / Anti.Analysis
  Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis
  ☆45Updated 7 years ago
• wbenny / avmext
  Anti-Anti-VM solution via Windows Driver
  ☆57Updated 6 years ago
• jthuraisamy / DIRT
  Driver Initial Reconnaissance Tool
  ☆123Updated 5 years ago
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆96Updated 3 years ago
• SouhailHammou / KernelSymbolsHelper
  Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…
  ☆53Updated 5 years ago
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆39Updated 4 years ago
• NtRaiseHardError / AntiHook
  PoC designed to evade userland-hooking anti-virus.
  ☆88Updated 5 years ago
• danielplohmann / empty_msvc
  A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.
  ☆32Updated 9 months ago
• saweol / vwaad
  IDA script for vmprotect Windows Api address decoder
  ☆51Updated 3 years ago
• rsumner33 / anti-anti-vm-detection-dll
  ☆34Updated last year
• ctxis / capemon
  CAPE monitor DLLs
  ☆39Updated 5 years ago
• MortenSchenk / tagWnd-Hardening-Bypass
  Bypass for the hardening against usage of tagWnd as a kernel read/write primitive
  ☆29Updated 8 years ago
• SouhailHammou / IDARay-Plugin
  IDARay is an IDA Pro plugin that matches the database against multiple YARA files which themselves may contain multiple rules.
  ☆18Updated 6 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 6 years ago
• SouhailHammou / Drivers
  Windows Drivers
  ☆97Updated 6 years ago
• RceNinja / Re-Scripts
  ☆33Updated 3 years ago
• hasherezade / tag_converter
  ☆22Updated 4 years ago
• Cr4sh / DrvHide-PoC
  Hidden kernel mode code execution for bypassing modern anti-rootkits.
  ☆82Updated 14 years ago
• kcreyts / plugxdecoder
  Decodes PlugX traffic and encrypted/compressed artifacts
  ☆38Updated 11 years ago
• JKornev / hijacken
  Analyze and attack windows applications using dll hijacking vulnerabilities
  ☆56Updated 5 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆38Updated 8 years ago
• adamkramer / jmp2it
  Transfer EIP control to shellcode during malware analysis investigation
  ☆75Updated 10 years ago