kaganisildak / malwarescarecrowLinks
A tool designed to make physical devices detectable by malware and make system look like virtual machine.
☆397Updated 5 years ago
Alternatives and similar repositories for malwarescarecrow
Users that are interested in malwarescarecrow are comparing it to the libraries listed below
Sorting:
- Dynamic unpacker based on PE-sieve☆795Updated 4 months ago
- A Binary Genetic Traits Lexer Framework☆520Updated 5 months ago
- High Octane Triage Analysis☆806Updated last week
- Malduck is your ducky companion in malware analysis journeys☆349Updated 7 months ago
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆587Updated last year
- A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analys…☆424Updated last year
- A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to …☆394Updated 6 months ago
- "Screwed Drivers" centralized information source for code references, links, etc.☆371Updated 5 years ago
- The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.☆170Updated last week
- This script allows you to create various artifacts on a bare-metal Windows computer in an attempt to trick malwares that looks for VM or …☆288Updated last year
- Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.☆752Updated 4 years ago
- ☆518Updated 2 years ago
- A GUI and CLI tool for removing bloat from executables☆440Updated 6 months ago
- Code snips and notes☆140Updated 3 years ago
- Assortment of hashing algorithms used in malware☆389Updated 2 weeks ago
- Malware repository component for samples & static configuration with REST API interface.☆374Updated last week
- A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. T…☆952Updated 4 years ago
- InviZzzible is a tool for assessment of your virtual environments in an easy and reliable way. It contains the most recent and up to date…☆579Updated 3 years ago
- Encyclopedia for Executables☆466Updated 4 years ago
- A golang CLI tool to download malware from a variety of sources.☆151Updated 6 months ago
- Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into ca…☆437Updated last year
- PeaceMaker Threat Detection is a Windows kernel-based application that detects advanced techniques used by malware.☆431Updated 5 years ago
- Collection of malware persistence and hunting information. Be a persistent persistence hunter!☆184Updated 3 months ago
- A wireshark plugin to instrument ETW☆579Updated 4 years ago
- This repository contains indicators of compromise (IOCs) of our various investigations.☆310Updated 2 months ago
- A guide on how to write fast and memory friendly YARA rules☆162Updated 11 months ago
- Distributed malware processing framework based on Python, Redis and S3.☆459Updated last month
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆259Updated 3 years ago
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆671Updated 3 weeks ago
- Windows x64 handcrafted token stealing kernel-mode shellcode☆510Updated last year