d4rksystem / VBoxCloak
A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to evade analysis. Guaranteed to bring down your pafish ratings by at least a few points ;)
☆289Updated last year
Alternatives and similar repositories for VBoxCloak:
Users that are interested in VBoxCloak are comparing it to the libraries listed below
- A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analys…☆340Updated 2 months ago
- A ProcessMonitor visualization application written in rust.☆177Updated last year
- Dynamic unpacker based on PE-sieve☆718Updated 2 weeks ago
- Deobfuscate batch scripts obfuscated using string substitution and escape character techniques.☆157Updated 2 years ago
- An automatic unpacker and logger for DotNet Framework targeting files☆252Updated last year
- Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…☆158Updated last month
- Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs☆736Updated last year
- Assortment of hashing algorithms used in malware☆352Updated 3 weeks ago
- Microsoft Windows DLL Export Browser (Enumerate Exports, COM Methods and Properties) with Advanced Search Features.☆216Updated 9 months ago
- Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.☆171Updated last week
- A GUI and CLI tool for removing bloat from executables☆387Updated 2 months ago
- Repository of Yara Rules☆103Updated last month
- ☆200Updated 5 months ago
- $MFT directory tree reconstruction & FILE record info☆305Updated 5 months ago
- Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR☆236Updated this week
- Important notes and topics on my journey towards mastering Windows Internals☆374Updated 11 months ago
- The Windows Malware Analysis Reversing Core Tools☆92Updated 4 years ago
- Signtool for expired certificates☆473Updated last year
- Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into ca…☆397Updated 8 months ago
- ☆488Updated last year
- Collection of malware persistence and hunting information. Be a persistent persistence hunter!☆175Updated 2 months ago
- MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.☆207Updated last year
- Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.☆180Updated 3 years ago
- Somes tools and scripts☆145Updated 3 years ago
- Analyse your malware to surgically obfuscate it☆457Updated last month
- Living Off The Land Drivers☆1,140Updated last week
- PowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performs…☆178Updated 11 months ago
- PoCs and tools for investigation of Windows process execution techniques☆912Updated 2 weeks ago
- Code snips and notes☆135Updated 3 years ago
- Dump quarantined files from Windows Defender☆62Updated 2 years ago