serializingme / emofishes
Emofishes is a collection of proof-of-concepts that help improve, bypass or detect virtualized execution environments (focusing on the ones setup for malware analysis).
☆15Updated last year
Related projects ⓘ
Alternatives and complementary repositories for emofishes
- Environmental (and http) keying for scripting languages☆39Updated 6 years ago
- This script is used for extracting DDE in docx and xlsx☆12Updated 6 years ago
- Tools to enumerate Windows Firewall Hook Drivers on Windows 2000, XP and 2003☆20Updated 9 years ago
- A simple reflective dll example☆18Updated 7 years ago
- Various snippets created during malware analysis☆22Updated 6 years ago
- Fileless SQL Server CLR-based Custom Stored Procedure Command Execution☆35Updated 7 years ago
- POC for IAT Parsing Payloads☆47Updated 7 years ago
- Mimikatz HashClash☆12Updated 9 years ago
- ☆19Updated 7 years ago
- Network detector for Winnti malware☆20Updated 6 years ago
- Making shellcode UD - https://osandamalith.com☆24Updated 8 years ago
- ☆17Updated 6 years ago
- Portable utility to check if a machine has been infected by Shamoon2☆14Updated 7 years ago
- A set of compiled application restriction bypasses☆29Updated 7 years ago
- Python based module to find common vulnerabilities which lead to Windows privilege escalation☆32Updated 8 years ago
- Scripts targeting specific families☆13Updated 7 years ago
- A tool to generate yara signatures from function blocks☆19Updated 9 years ago
- Nano meterpreter shell based on TinyMet☆27Updated 8 years ago
- A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…☆19Updated 3 years ago
- Analysis PE file or Shellcode☆48Updated 8 years ago