a0rtega / pafishLinks
Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do
☆3,688Updated 11 months ago
Alternatives and similar repositories for pafish
Users that are interested in pafish are comparing it to the libraries listed below
Sorting:
- Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.☆6,350Updated last month
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,345Updated 3 weeks ago
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆1,931Updated 2 months ago
- Script to create templates to use with VirtualBox to make vm detection harder☆746Updated 2 years ago
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,559Updated last week
- windows kernel security development☆2,010Updated 2 years ago
- Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loadi…☆2,966Updated 2 years ago
- InviZzzible is a tool for assessment of your virtual environments in an easy and reliable way. It contains the most recent and up to date…☆563Updated 3 years ago
- Windows System Call Tables (NT/2000/XP/2003/Vista/7/8/10/11)☆2,341Updated last month
- Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…☆2,178Updated 3 weeks ago
- Malware Configuration And Payload Extraction☆2,471Updated this week
- MemProcFS☆3,626Updated 3 weeks ago
- 🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc☆1,906Updated 2 years ago
- Vmware Hardened VM detection mitigation loader (anti anti-vm)☆1,996Updated 2 years ago
- A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering env…☆7,370Updated last month
- Hook system calls, context switches, page faults and more.☆2,548Updated 2 years ago
- Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide☆3,721Updated last year
- Hiding kernel-driver for x86/x64.☆2,364Updated 2 weeks ago
- Noriben - Portable, Simple, Malware Analysis Sandbox☆1,160Updated 2 months ago
- pefile is a Python module to read and work with PE (Portable Executable) files☆1,952Updated 9 months ago
- DRAKVUF Black-box Binary Analysis☆1,126Updated this week
- Disable PatchGuard and Driver Signature Enforcement at boot time☆2,031Updated this week
- Defeating Windows User Account Control☆6,812Updated last week
- VirtualBox VM detection mitigation loader☆944Updated 2 years ago
- DRAKVUF Sandbox - automated hypervisor-level malware analysis system☆1,148Updated last week
- Windows NT Syscall tables☆1,295Updated last week
- IDA Pro utilities from FLARE team☆2,347Updated 7 months ago
- A static analyzer for PE executables.☆1,068Updated last year
- Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode☆2,306Updated last year
- A Pin Tool for tracing API calls etc☆1,469Updated this week