A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analysis.
☆437Jan 25, 2025Updated last year
Alternatives and similar repositories for VMwareCloak
Users that are interested in VMwareCloak are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to …☆412Jul 4, 2025Updated 11 months ago
- MacroExploit use in excel sheet☆20Jun 12, 2023Updated 3 years ago
- Vmware Hardened VM detection mitigation loader (anti anti-vm)☆2,290Dec 2, 2022Updated 3 years ago
- Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.☆237Jun 24, 2026Updated last week
- An automatic unpacker and logger for DotNet Framework targeting files☆269Aug 23, 2023Updated 2 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing☆24May 29, 2023Updated 3 years ago
- The FLARE team's open-source tool to identify capabilities in executable files.☆6,076Jun 22, 2026Updated last week
- Malware Configuration And Payload Extraction☆3,308Jun 24, 2026Updated last week
- TartarusGate, Bypassing EDRs☆665Jan 25, 2022Updated 4 years ago
- Free training course offered at Hack Space Con 2023☆138Apr 13, 2023Updated 3 years ago
- MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.☆228May 3, 2023Updated 3 years ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆121Apr 8, 2023Updated 3 years ago
- Windows kernel and user mode emulation.☆1,994Jun 19, 2026Updated last week
- A Multi-Threaded PE Export Collection Utility☆14May 13, 2023Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Placeholder for my detection repo and misc detection engineering content☆42Oct 20, 2023Updated 2 years ago
- A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering env…☆8,808Jun 23, 2026Updated last week
- Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that…☆3,926Jun 21, 2024Updated 2 years ago
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆163Apr 6, 2025Updated last year
- a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…☆66Aug 23, 2023Updated 2 years ago
- Practical Windows Forensics Training☆767Feb 16, 2026Updated 4 months ago
- A utility to fix intentionally corrupted UPX packed files.☆93May 22, 2023Updated 3 years ago
- Performing Indirect Clean Syscalls☆616May 2, 2026Updated last month
- YARI is an interactive debugger for YARA Language.☆90Sep 10, 2025Updated 9 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR☆723May 2, 2026Updated 2 months ago
- ☆138Apr 20, 2023Updated 3 years ago
- APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the …☆1,410Nov 7, 2024Updated last year
- Sysmon configuration file template with default high-quality event tracing☆599Jan 21, 2026Updated 5 months ago
- PowerShell script helping Incident Responders discover potential adversary persistence mechanisms.☆331May 1, 2025Updated last year
- Using fibers to run in-memory code.☆245Oct 19, 2023Updated 2 years ago
- Anti Forensics Tool For Red Teamers, Used For Erasing Footprints In The Post Exploitation Phase.☆788Jun 23, 2023Updated 3 years ago
- Elastic Security detection content for Endpoint☆1,444Updated this week
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,706Jun 6, 2026Updated 3 weeks ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆1,175Jun 10, 2024Updated 2 years ago
- Hiding shellcode in plain sight within a large memory region. Inspired by technique used by Raspberry Robin's Roshtyak☆211Nov 12, 2025Updated 7 months ago
- Malware samples, analysis exercises and other interesting resources.☆1,643Jan 13, 2024Updated 2 years ago
- ☆1,139Dec 19, 2023Updated 2 years ago
- ScareCrow - Payload creation framework designed around EDR bypass.☆2,888Aug 18, 2023Updated 2 years ago
- Các IDA Flirt signatures HTC tạo☆21Oct 21, 2024Updated last year
- ☆436Apr 22, 2025Updated last year