Alternatives and similar repositories for VBoxCloak

Users that are interested in VBoxCloak are comparing it to the libraries listed below

• d4rksystem / VMwareCloak
  A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analys…
  ☆425Updated last year
• Squiblydoo / debloat
  A GUI and CLI tool for removing bloat from executables
  ☆441Updated 7 months ago
• mandiant / VM-Packages
  Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.
  ☆215Updated this week
• hasherezade / mal_unpack
  Dynamic unpacker based on PE-sieve
  ☆796Updated 4 months ago
• jeremybeaume / tools
  Somes tools and scripts
  ☆153Updated 4 years ago
• PhrozenIO / DLest
  Microsoft Windows DLL Export Browser (Enumerate Exports, COM Methods and Properties) with Advanced Search Features.
  ☆251Updated last year
• DissectMalware / batch_deobfuscator
  Deobfuscate batch scripts obfuscated using string substitution and escape character techniques.
  ☆165Updated 3 years ago
• advanced-threat-research / DotDumper
  An automatic unpacker and logger for DotNet Framework targeting files
  ☆267Updated 2 years ago
• Unprotect-Project / Unprotect_Submission
  Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…
  ☆203Updated 4 months ago
• forensicxlab / VISION-ProcMon
  A ProcessMonitor visualization application written in rust.
  ☆184Updated 2 years ago
• persistence-info / persistence-info.github.io
  ☆520Updated 2 years ago
• RussianPanda95 / Yara-Rules
  Repository of Yara Rules
  ☆139Updated 3 weeks ago
• OALabs / hashdb
  Assortment of hashing algorithms used in malware
  ☆389Updated 3 weeks ago
• CheckPointSW / Evasions
  Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into ca…
  ☆441Updated last year
• forrest-orr / moneta
  Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
  ☆803Updated last year
• Malandrone / PowerDecode
  PowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performs…
  ☆229Updated last year
• gtworek / VolatileDataCollector
  ☆214Updated 2 months ago
• kacos2000 / MFT_Browser
  $MFT directory tree reconstruction & FILE record info
  ☆325Updated last year
• NavyTitanium / Fake-Sandbox-Artifacts
  This script allows you to create various artifacts on a bare-metal Windows computer in an attempt to trick malwares that looks for VM or …
  ☆288Updated last year
• MagnetForensics / dumpit-linux
  Memory acquisition for Linux that makes sense.
  ☆219Updated 2 years ago
• Velocidex / WinPmem
  The multi-platform memory acquisition tool.
  ☆942Updated 3 months ago
• magicsword-io / LOLDrivers
  Living Off The Land Drivers
  ☆1,386Updated this week
• bytecode77 / living-off-the-land
  Fileless attack with persistence
  ☆370Updated 7 months ago
• LETHAL-FORENSICS / MemProcFS-Analyzer
  MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
  ☆693Updated 3 months ago
• SentineLabs / SentinelLabs_RevCore_Tools
  The Windows Malware Analysis Reversing Core Tools
  ☆97Updated 5 years ago
• OALabs / Lab-Notes
  Code snips and notes
  ☆140Updated 3 years ago
• strontic / xcyclopedia
  Encyclopedia for Executables
  ☆472Updated 4 years ago
• Bw3ll / sharem
  SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also conta…
  ☆478Updated 7 months ago
• rivitna / Malware
  ☆380Updated this week
• prodaft / malware-ioc
  This repository contains indicators of compromise (IOCs) of our various investigations.
  ☆310Updated 3 months ago