Alternatives and similar repositories for Fake-Sandbox-Artifacts:

Users that are interested in Fake-Sandbox-Artifacts are comparing it to the libraries listed below

• d4rksystem / VMwareCloak
  A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analys…
  ☆347Updated 3 months ago
• d4rksystem / VBoxCloak
  A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to …
  ☆294Updated 2 years ago
• strontic / xcyclopedia
  Encyclopedia for Executables
  ☆439Updated 3 years ago
• mandiant / capa-rules
  Standard collection of rules for capa: the tool for enumerating the capabilities of programs
  ☆574Updated last month
• DissectMalware / XLMMacroDeobfuscator
  Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)
  ☆578Updated 11 months ago
• hasherezade / mal_unpack
  Dynamic unpacker based on PE-sieve
  ☆727Updated last month
• persistence-info / persistence-info.github.io
  ☆489Updated last year
• forrest-orr / moneta
  Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
  ☆740Updated last year
• ditekshen / detection
  Detection in the form of Yara, Snort and ClamAV signatures.
  ☆224Updated 5 months ago
• ethereal-vx / Antivirus-Artifacts
  Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.
  ☆737Updated 3 years ago
• DissectMalware / batch_deobfuscator
  Deobfuscate batch scripts obfuscated using string substitution and escape character techniques.
  ☆158Updated 2 years ago
• CERT-Polska / malduck
  Malduck is your ducky companion in malware analysis journeys
  ☆329Updated this week
• CheckPointSW / Evasions
  Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into ca…
  ☆405Updated 9 months ago
• kirk-sayre-work / ViperMonkey
  A VBA parser and emulation engine to analyze malicious macros.
  ☆96Updated last week
• bartblaze / Yara-rules
  Collection of private Yara rules.
  ☆353Updated last week
• binref / refinery
  High Octane Triage Analysis
  ☆722Updated this week
• mandiant / VM-Packages
  Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.
  ☆175Updated this week
• EricZimmerman / LECmd
  Lnk Explorer Command line edition!!
  ☆300Updated 3 months ago
• Neo23x0 / YARA-Performance-Guidelines
  A guide on how to write fast and memory friendly YARA rules
  ☆142Updated 2 months ago
• m417z / winbindex
  An index of Windows binaries, including download links for executables such as exe, dll and sys files
  ☆650Updated this week
• fireeye / BitsParser
  ☆146Updated 10 months ago
• silence-is-best / c2db
  c2 traffic
  ☆188Updated 2 years ago
• CheckPointSW / InviZzzible
  InviZzzible is a tool for assessment of your virtual environments in an easy and reliable way. It contains the most recent and up to date…
  ☆555Updated 3 years ago
• JPCERTCC / MalConfScan
  Volatility plugin for extracts configuration data of known malware
  ☆486Updated last year
• am0nsec / vx
  Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.
  ☆180Updated 3 years ago
• magicsword-io / LOLDrivers
  Living Off The Land Drivers
  ☆1,153Updated 3 weeks ago
• felixweyne / imaginaryC2
  Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which …
  ☆447Updated 2 years ago
• nasbench / EVTX-ETW-Resources
  Event Tracing For Windows (ETW) Resources
  ☆375Updated 6 months ago
• CERT-Polska / karton
  Distributed malware processing framework based on Python, Redis and S3.
  ☆415Updated 3 weeks ago
• malpedia / signator-rules
  Collection of rules created using YARA-Signator over Malpedia
  ☆128Updated 5 months ago