hfiref0x / VBoxHardenedLoader
VirtualBox VM detection mitigation loader
☆918Updated last year
Related projects ⓘ
Alternatives and complementary repositories for VBoxHardenedLoader
- Script to create templates to use with VirtualBox to make vm detection harder☆712Updated 2 years ago
- InviZzzible is a tool for assessment of your virtual environments in an easy and reliable way. It contains the most recent and up to date…☆537Updated 2 years ago
- makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]☆732Updated 5 years ago
- Imports Reconstructor☆1,120Updated last year
- Vmware Hardened VM detection mitigation loader (anti anti-vm)☆1,795Updated last year
- Virtualbox, VirtualMachine, Cuckoo, Anubis, ThreatExpert, Sandboxie, QEMU, Analysis Tools Detection Tools☆442Updated 6 years ago
- Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that…☆3,407Updated 5 months ago
- Hiding kernel-driver for x86/x64.☆2,122Updated 10 months ago
- xAnalyzer plugin for x64dbg☆1,019Updated 3 years ago
- Windows Object Explorer 64-bit☆1,649Updated last month
- Driver loader for bypassing Windows x64 Driver Signature Enforcement☆1,045Updated 5 years ago
- Disable PatchGuard and Driver Signature Enforcement at boot time☆1,822Updated 10 months ago
- DRAKVUF Black-box Binary Analysis☆1,062Updated last month
- Universal PatchGuard and Driver Signature Enforcement Disable☆830Updated 5 years ago
- PE-bear (builds only)☆769Updated last year
- Demos of various injection techniques found in malware☆791Updated 2 years ago
- Windows process injection methods☆142Updated last year
- Windows x64 Driver Signature Enforcement Overrider☆718Updated 5 years ago
- A collection of x64dbg scripts. Feel free to submit a pull request to add your script.☆502Updated 5 months ago
- Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide☆3,477Updated 5 months ago
- Windows NT Syscall tables☆1,156Updated 2 weeks ago
- Portable Executable parsing library (from PE-bear)☆648Updated 2 months ago
- Load self-signed drivers without TestSigning or disable DSE. Transferred from https://github.com/DoubleLabyrinth/Windows10-CustomKernelSi…☆690Updated 4 years ago
- A Pin Tool for tracing API calls etc☆1,303Updated this week
- proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC☆1,140Updated 6 months ago
- Official x64dbg plugin for IDA Pro.☆462Updated last month
- Dynamic unpacker based on PE-sieve☆658Updated 8 months ago
- Protected Processes Light Killer☆889Updated last year
- 🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc☆1,827Updated 2 years ago
- A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl☆1,117Updated 2 weeks ago