Hnisec / AntiAnalysisLinks
Detect VirtualBox, SandBox, Emulator, Debugger, Hosting, Processes in C#
☆20Updated 5 years ago
Alternatives and similar repositories for AntiAnalysis
Users that are interested in AntiAnalysis are comparing it to the libraries listed below
Sorting:
- Anti-Debug methods with C#☆14Updated 4 years ago
- A library to hook functions !☆19Updated 3 years ago
- ☆20Updated 2 years ago
- Injecting shellcode into a process memory and executing it in C#☆52Updated 2 years ago
- A small shellcode loader library written in C#☆48Updated 3 years ago
- Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.☆62Updated 4 years ago
- Hide code from dnSpy and other C# spying tools☆42Updated 4 years ago
- Group 4 - C# Remote Administrator Tool☆11Updated 7 months ago
- Fud Runpe Av Evasion / All Av Bypass☆32Updated 2 years ago
- My personal shellcode loader☆31Updated 2 years ago
- Bypassing ETW with Csharp☆27Updated 3 years ago
- A Proof-of-Concept implementation for Proxy Object Obfuscation in .NET☆49Updated 2 years ago
- Learning Process Injection and Hollowing techniques☆42Updated 3 years ago
- Change hash for a signed pe☆16Updated 2 years ago
- Unlock files and folders☆14Updated 3 years ago
- A rework of CMLuaUtil AutoElevated☆27Updated 2 years ago
- Bypassing windows uac, however its an old approach/method but its still unpatched ¯\_(ツ)_/¯☆43Updated 3 years ago
- A proof of concept of real custom GetProcAddress and GetModuleBaseAddress☆20Updated 3 years ago
- C# library to load a native DLL from memory without the need to allow unsafe code☆93Updated 6 years ago
- Runpe + DInvoke + Syscall☆16Updated 4 years ago
- Unhooks Bit Defender from NTDLL and KERNELBASE using a classic technique.☆56Updated 2 years ago
- Convert native dll to shellcode, and support exported function☆23Updated 4 years ago
- MappingInjection via csharp☆39Updated 3 years ago
- User Mode Windows Rootkit☆67Updated last year
- A lightweight .NET assembly dependency merger that uses dnLib and 7zip's LZMA SDK for compressing dependant assemblies.☆104Updated last year
- Command line & PPID spoofing☆28Updated 2 years ago
- Obfuscator To Protect .NET Assemblies From Being Reverse Engineered.☆37Updated 4 years ago
- Bypass AMSI☆14Updated 4 years ago
- Without closing windows defender, to make defender useless by removing its token privileges and lowering the token integrity.☆31Updated 3 years ago
- Packer compressing .net assemblies, (ab)using the PE format for data storage☆172Updated 2 years ago