marcusbotacin / Anti.AnalysisLinks
Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis
☆45Updated 7 years ago
Alternatives and similar repositories for Anti.Analysis
Users that are interested in Anti.Analysis are comparing it to the libraries listed below
Sorting:
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆41Updated 5 years ago
- Flare-On solutions☆36Updated 5 years ago
- Binary Ninja plugin that syncs WinDbg to Binary Ninja☆47Updated 7 years ago
- Old exploits and code for my self-referencing PML4 technique (2014)☆32Updated 10 years ago
- ☆34Updated 7 years ago
- ☆34Updated 3 years ago
- PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls☆38Updated 9 years ago
- Hansel - a simple but flexible search for IDA☆26Updated 5 years ago
- Control Flow Guard Teleportation demo☆23Updated 5 years ago
- IDARay is an IDA Pro plugin that matches the database against multiple YARA files which themselves may contain multiple rules.☆18Updated 6 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆37Updated 6 years ago
- ☆51Updated 8 years ago
- My conference presentations and publications☆26Updated 3 years ago
- The exploit for Panda AV LPE☆37Updated 6 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆74Updated 6 years ago
- Anti-technique Codes, Detection of Anti-technique codes☆38Updated 11 years ago
- PCAUSA Rawether for Windows Local Privilege Escalation☆38Updated 8 years ago
- ☆22Updated 4 years ago
- A simple tool to view important DLL Characteristics and change DEP and ASLR☆44Updated 6 years ago
- findLoop - find possible encryption/decryption or compression/decompression code☆26Updated 6 years ago
- Solutions to HackSysExtremeVulnerableDriver challenges though my following of @FuzzySecurity's tutorials plus futher explanations where n…☆22Updated 7 years ago
- Windows syscall fuzzer that I used in 2017 & 2018. Not much to say about it but maybe helpful to someone. At least syscall information it…☆20Updated 5 years ago
- A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.☆32Updated last year
- ☆35Updated 9 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆29Updated 8 years ago
- An IDA Pro script for creating a clearer idb for nymaim malware☆10Updated 7 years ago
- Public repository for HEVD exploits☆20Updated 7 years ago
- Experimental Windows .text section Patch Detector☆21Updated 10 years ago
- An Integrity-Check Monitoring Pintool☆58Updated 4 years ago
- CAPE monitor DLLs☆41Updated 5 years ago