marcusbotacin / Anti.AnalysisLinks
Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis
☆45Updated 7 years ago
Alternatives and similar repositories for Anti.Analysis
Users that are interested in Anti.Analysis are comparing it to the libraries listed below
Sorting:
- ☆34Updated 7 years ago
- POC viruses I have created to demo some ideas☆59Updated 5 years ago
- Flare-On solutions☆36Updated 5 years ago
- Solutions to HackSysExtremeVulnerableDriver challenges though my following of @FuzzySecurity's tutorials plus futher explanations where n…☆22Updated 7 years ago
- ☆50Updated 8 years ago
- Public repository for HEVD exploits☆20Updated 7 years ago
- Old exploits and code for my self-referencing PML4 technique (2014)☆32Updated 10 years ago
- ☆34Updated 4 years ago
- PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls☆39Updated 9 years ago
- findLoop - find possible encryption/decryption or compression/decompression code☆26Updated 6 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆58Updated 9 years ago
- Binary Ninja plugin that syncs WinDbg to Binary Ninja☆47Updated 7 years ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆42Updated 5 years ago
- The exploit for Panda AV LPE☆37Updated 6 years ago
- My articles for Paged Out! #2☆17Updated 5 years ago
- A tool to help malware analysts tell that the sample is injecting code into other process.☆78Updated 9 years ago
- CAPE monitor DLLs☆41Updated 5 years ago
- Use WinDBG to trace the Windows API calls of any Portable Executable file☆31Updated 8 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆34Updated 7 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆29Updated 8 years ago
- Anti-technique Codes, Detection of Anti-technique codes☆38Updated 11 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆74Updated 6 years ago
- The Minimalistic x86/x64 API Hooking Library for Windows☆32Updated 7 years ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆123Updated 4 years ago
- Exploit code used for the HackSysExtremeVulnerableDriver.☆43Updated 6 years ago
- ☆45Updated 7 years ago
- x86 bootloader emulation with Miasm (case of NotPetya)☆43Updated 6 years ago
- ☆49Updated 5 years ago
- Bootkits Revisited☆40Updated 11 years ago
- My conference presentations and publications☆26Updated 3 years ago