d4rksystem / VBoxCloakLinks
A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to evade analysis. Guaranteed to bring down your pafish ratings by at least a few points ;)
☆298Updated 2 years ago
Alternatives and similar repositories for VBoxCloak
Users that are interested in VBoxCloak are comparing it to the libraries listed below
Sorting:
- A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analys…☆360Updated 5 months ago
- Deobfuscate batch scripts obfuscated using string substitution and escape character techniques.☆163Updated 2 years ago
- Dynamic unpacker based on PE-sieve☆736Updated 3 weeks ago
- Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…☆165Updated 2 months ago
- Fileless attack with persistence☆355Updated 6 months ago
- Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs☆755Updated last year
- Assortment of hashing algorithms used in malware☆364Updated this week
- Signtool for expired certificates☆481Updated 2 years ago
- Repository of Yara Rules☆111Updated 2 months ago
- An automatic unpacker and logger for DotNet Framework targeting files☆253Updated last year
- Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.☆184Updated last week
- A ProcessMonitor visualization application written in rust.☆181Updated last year
- Black Angel is a Windows 11/10 x64 kernel mode rootkit. Rootkit can be loaded with enabled DSE while maintaining its full functionality.☆640Updated last year
- Important notes and topics on my journey towards mastering Windows Internals☆395Updated last year
- Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into ca…☆410Updated 11 months ago
- "Screwed Drivers" centralized information source for code references, links, etc.☆359Updated 5 years ago
- PoCs and tools for investigation of Windows process execution techniques☆922Updated 2 weeks ago
- A Binary Genetic Traits Lexer Framework☆495Updated 4 months ago
- Rusty Bootkit - Windows UEFI Bootkit in Rust (Codename: RedLotus)☆538Updated last year
- PowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performs…☆193Updated last year
- Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers t…☆457Updated 3 years ago
- Cronos is Windows 10/11 x64 ring 0 rootkit. Cronos is able to hide processes, protect and elevate them with token manipulation.☆911Updated 3 years ago
- baton drop (CVE-2022-21894): Secure Boot Security Feature Bypass Vulnerability☆329Updated last year
- A collection of various vulnerable (mostly physical memory exposing) drivers.☆392Updated 3 years ago
- Living Off The Land Drivers☆1,206Updated last month
- InviZzzible is a tool for assessment of your virtual environments in an easy and reliable way. It contains the most recent and up to date…☆563Updated 3 years ago
- Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.☆740Updated 3 years ago
- Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.☆181Updated 3 years ago
- Guided Hacking's official tool to practice bypassing anti-debug techniques.☆277Updated last month
- Collection of malware persistence and hunting information. Be a persistent persistence hunter!☆179Updated 5 months ago