Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do
☆3,915Jun 21, 2024Updated last year
Alternatives and similar repositories for pafish
Users that are interested in pafish are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.☆6,981Updated this week
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆4,046Updated this week
- Script to create templates to use with VirtualBox to make vm detection harder☆771Nov 5, 2022Updated 3 years ago
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,681May 31, 2026Updated last week
- Pafish Macro is a Macro enabled Office Document to detect malware analysis systems and sandboxes. It uses evasion & detection techniques …☆297Jun 27, 2017Updated 8 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Vmware Hardened VM detection mitigation loader (anti anti-vm)☆2,280Dec 2, 2022Updated 3 years ago
- Virtualbox, VirtualMachine, Cuckoo, Anubis, ThreatExpert, Sandboxie, QEMU, Analysis Tools Detection Tools☆462Nov 22, 2018Updated 7 years ago
- Windows kernel and user mode emulation.☆1,983May 21, 2026Updated 2 weeks ago
- VirtualBox VM detection mitigation loader☆971Apr 2, 2023Updated 3 years ago
- A static analyzer for PE executables.☆1,124Mar 11, 2026Updated 2 months ago
- Defund the Police.☆13,812Jun 7, 2024Updated 2 years ago
- A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering env…☆8,739Apr 28, 2026Updated last month
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆2,132May 28, 2026Updated last week
- Defeating Windows User Account Control☆7,618May 22, 2026Updated 2 weeks ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- The FLARE team's open-source tool to identify capabilities in executable files.☆6,041Updated this week
- DRAKVUF Black-box Binary Analysis☆1,235May 24, 2026Updated 2 weeks ago
- Noriben - Portable, Simple, Malware Analysis Sandbox☆1,271Mar 26, 2026Updated 2 months ago
- Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loadi…☆3,284Sep 3, 2022Updated 3 years ago
- A VBA parser and emulation engine to analyze malicious macros.☆1,122Jul 10, 2024Updated last year
- Hiding kernel-driver for x86/x64.☆2,749Sep 2, 2025Updated 9 months ago
- Demos of various injection techniques found in malware☆789Feb 15, 2022Updated 4 years ago
- Windows memory hacking library☆5,417Jan 26, 2024Updated 2 years ago
- makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]☆742Mar 17, 2019Updated 7 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode☆2,528Nov 15, 2023Updated 2 years ago
- Intel VT-x based hypervisor aiming to provide a thin VM-exit filtering platform on Windows.☆1,751Nov 24, 2023Updated 2 years ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆4,611Jul 8, 2025Updated 11 months ago
- Source from VMDE paper, adapted to 2015☆188Dec 18, 2017Updated 8 years ago
- Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU☆1,686Feb 14, 2024Updated 2 years ago
- Hook system calls, context switches, page faults and more.☆2,655May 9, 2023Updated 3 years ago
- Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software v…☆4,191May 20, 2026Updated 2 weeks ago
- Automated Virtual Machine Generation and Cloaking for Cuckoo Sandbox.☆517May 14, 2024Updated 2 years ago
- Converts PE into a shellcode☆2,770Aug 30, 2025Updated 9 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…☆2,360Jun 1, 2026Updated last week
- DRAKVUF Sandbox - automated hypervisor-level malware analysis system☆1,298Updated this week
- AV/EDR evasion via direct system calls.☆1,812Sep 3, 2022Updated 3 years ago
- HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux☆3,016Feb 24, 2025Updated last year
- A tool to detect and crash Cuckoo Sandbox☆297Jul 22, 2024Updated last year
- A Pin Tool for tracing API calls etc☆1,662Updated this week
- Diaphora, the most advanced Free and Open Source program diffing tool.☆4,289May 14, 2026Updated 3 weeks ago