kkent030315 / detect-anyrunLinks
ANY.RUN sandbox detection collection
☆21Updated last year
Alternatives and similar repositories for detect-anyrun
Users that are interested in detect-anyrun are comparing it to the libraries listed below
Sorting:
- WinApi Patcher is a straightforward tool leveraging windows API hooking to patch and modify certain behaviors in a targeted environment.☆44Updated 11 months ago
- Windows 11 24H2 Runtime PatchGuard Bypass☆167Updated this week
- Yet another IDA Pro/Home plugin for deobfuscating stack strings☆62Updated 3 weeks ago
- A journal for $6,000 Riot Vanguard bounty.☆65Updated last year
- An x64dbg plugin which helps make sense of long C++ symbols☆59Updated 2 years ago
- An improved version of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆71Updated 4 months ago
- ☆22Updated 2 weeks ago
- Generate a PDB file given the old PDB file and an address mapping☆49Updated 3 weeks ago
- Hook all callbacks which are registered with LdrRegisterDllNotification☆88Updated 4 months ago
- windows rootkit☆61Updated last year
- Proof-of-concept game using VBS enclaves to protect itself from cheating☆43Updated 9 months ago
- Lightweight Threat Detection System - (Base)☆15Updated last year
- Exploit for eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W☆62Updated 2 months ago
- LLVM based obfuscation engine☆98Updated 2 months ago
- Header-only C++ library for producing PE files.☆34Updated 2 years ago
- Report and exploit of CVE-2024-21305.☆36Updated last year
- A VMWare logger using built-in backdoor.☆30Updated 10 months ago
- Create stealthy, inline, EPT-like hooks using SMAP and SMEP☆57Updated 10 months ago
- C++ macro for x64 programs that breaks ida hex-rays decompiler tool.☆128Updated last year
- monitors hidden syscalls called from call of duty anticheat☆82Updated 7 months ago
- ☆22Updated last year
- This repo contains EXPs about Vulnerable Windows Driver☆46Updated last year
- dynamic binary instrumentation, analysis, and patching framework☆93Updated this week
- devirtualization vmprotect☆62Updated 2 years ago
- Makes IDA (most versions) to crash upon opening it.☆99Updated 11 months ago
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆68Updated 2 years ago
- An x86-64 code virtualizer for VM based obfuscation☆131Updated 8 months ago
- WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API☆23Updated 3 years ago
- Another UEFI runtime bootkit☆30Updated 2 years ago
- All LLVM binaries scrambled with SigBreaker and used to test against llvm-lit☆24Updated 3 months ago