Malwation / sentello
Sentello is python script that simulates the anti-evasion and anti-analysis techniques used by malware.
☆70Updated 3 years ago
Related projects: ⓘ
- Unpacking and decryption tools for the Emotet malware☆46Updated 2 years ago
- A small utility to deal with malware embedded hashes.☆48Updated 11 months ago
- Evasion Escaper is a project aimed at evading the checks that malicious software performs to detect if it's running in a virtual environm…☆100Updated last year
- Petaq - Purple Team Command & Control Server☆101Updated last year
- My Malware Analysis Reports☆18Updated 2 years ago
- Red Team Operator: Malware Development Essentials Course☆92Updated 4 years ago
- A recreation of the "Nobelium" malware based on Microsofts Malware analysis - Part 1: PDF2Pwn☆100Updated last year
- Winsock accept() Backdoor Implant.☆110Updated 3 years ago
- Using Spotify Playlists as Malware CDN☆24Updated 3 years ago
- Liberating dem proprietary APT implants☆21Updated 4 years ago
- Scripts, Yara rules and other files developed during malware investigations☆24Updated 2 years ago
- Create a Run registry key with direct system calls. Inspired by @Cneelis's Dumpert and SharpHide.☆74Updated 4 years ago
- ☆22Updated 3 months ago
- Malware Samples that could be used for teaching students about malware analysis.☆45Updated 5 months ago
- The following repository contains a modified version of SUNBURST with cracekd hashes, comments and annotations.☆57Updated 3 years ago
- Sources code extracted from malwares for analysis☆36Updated last year
- Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …☆86Updated 3 years ago
- Lazarus analysis tools and research report☆54Updated 8 months ago
- Carbon Black Response IR tool☆53Updated 3 years ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆80Updated last year
- A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck☆125Updated 9 months ago
- ☆27Updated 2 years ago
- ☆50Updated this week
- An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples☆65Updated 2 years ago
- ☆47Updated 4 years ago
- Finding secrets in kernel and user memory☆112Updated last year
- Assembly HellGate implementation that directly calls Windows System Calls and displays the PPID of the explorer.exe process☆97Updated last year
- ☆102Updated this week
- PE File Blessing - To continue or not to continue☆86Updated 4 years ago
- TrashDBG the world's worse debugger☆24Updated 2 years ago