hfiref0x / VBoxHardenedLoader

Related projects ⓘ

Alternatives and complementary repositories for VBoxHardenedLoader

• nsmfoo / antivmdetection
  Script to create templates to use with VirtualBox to make vm detection harder
  ☆712Updated 2 years ago
• CheckPointSW / InviZzzible
  InviZzzible is a tool for assessment of your virtual environments in an easy and reliable way. It contains the most recent and up to date…
  ☆537Updated 2 years ago
• secrary / makin
  makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]
  ☆732Updated 5 years ago
• NtQuery / Scylla
  Imports Reconstructor
  ☆1,120Updated last year
• hzqst / VmwareHardenedLoader
  Vmware Hardened VM detection mitigation loader (anti anti-vm)
  ☆1,795Updated last year
• AlicanAkyol / sems
  Virtualbox, VirtualMachine, Cuckoo, Anubis, ThreatExpert, Sandboxie, QEMU, Analysis Tools Detection Tools
  ☆442Updated 6 years ago
• a0rtega / pafish
  Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that…
  ☆3,407Updated 5 months ago
• mrexodia / TitanHide
  Hiding kernel-driver for x86/x64.
  ☆2,122Updated 10 months ago
• ThunderCls / xAnalyzer
  xAnalyzer plugin for x64dbg
  ☆1,019Updated 3 years ago
• hfiref0x / WinObjEx64
  Windows Object Explorer 64-bit
  ☆1,649Updated last month
• hfiref0x / TDL
  Driver loader for bypassing Windows x64 Driver Signature Enforcement
  ☆1,045Updated 5 years ago
• Mattiwatti / EfiGuard
  Disable PatchGuard and Driver Signature Enforcement at boot time
  ☆1,822Updated 10 months ago
• tklengyel / drakvuf
  DRAKVUF Black-box Binary Analysis
  ☆1,062Updated last month
• hfiref0x / UPGDSED
  Universal PatchGuard and Driver Signature Enforcement Disable
  ☆830Updated 5 years ago
• hasherezade / pe-bear-releases
  PE-bear (builds only)
  ☆769Updated last year
• hasherezade / demos
  Demos of various injection techniques found in malware
  ☆791Updated 2 years ago
• odzhan / injection
  Windows process injection methods
  ☆142Updated last year
• hfiref0x / DSEFix
  Windows x64 Driver Signature Enforcement Overrider
  ☆718Updated 5 years ago
• x64dbg / Scripts
  A collection of x64dbg scripts. Feel free to submit a pull request to add your script.
  ☆502Updated 5 months ago
• x64dbg / ScyllaHide
  Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide
  ☆3,477Updated 5 months ago
• hfiref0x / SyscallTables
  Windows NT Syscall tables
  ☆1,156Updated 2 weeks ago
• hasherezade / bearparser
  Portable Executable parsing library (from PE-bear)
  ☆648Updated 2 months ago
• HyperSine / Windows10-CustomKernelSigners
  Load self-signed drivers without TestSigning or disable DSE. Transferred from https://github.com/DoubleLabyrinth/Windows10-CustomKernelSi…
  ☆690Updated 4 years ago
• hasherezade / tiny_tracer
  A Pin Tool for tracing API calls etc
  ☆1,303Updated this week
• wbenny / injdrv
  proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
  ☆1,140Updated 6 months ago
• x64dbg / x64dbgida
  Official x64dbg plugin for IDA Pro.
  ☆462Updated last month
• hasherezade / mal_unpack
  Dynamic unpacker based on PE-sieve
  ☆658Updated 8 months ago
• Mattiwatti / PPLKiller
  Protected Processes Light Killer
  ☆889Updated last year
• JKornev / hidden
  🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc
  ☆1,827Updated 2 years ago
• hasherezade / libpeconv
  A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl
  ☆1,117Updated 2 weeks ago