serializingme / emofishesLinks
Emofishes is a collection of proof-of-concepts that help improve, bypass or detect virtualized execution environments (focusing on the ones setup for malware analysis).
☆15Updated 2 years ago
Alternatives and similar repositories for emofishes
Users that are interested in emofishes are comparing it to the libraries listed below
Sorting:
- A simple reflective dll example☆19Updated 8 years ago
- This script is used for extracting DDE in docx and xlsx☆12Updated 7 years ago
- POC for IAT Parsing Payloads☆48Updated 8 years ago
- Mimikatz HashClash☆12Updated 10 years ago
- List of scripts used for malware analysis☆15Updated 10 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Updated 9 years ago
- Talk given at DerbyCon and RuxCon 2016☆23Updated 9 years ago
- Making shellcode UD - https://osandamalith.com☆25Updated 9 years ago
- A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics☆87Updated 8 years ago
- Environmental (and http) keying for scripting languages☆39Updated 7 years ago
- Nano meterpreter shell based on TinyMet☆28Updated 9 years ago
- Network detector for Winnti malware☆20Updated 7 years ago
- Various snippets created during malware analysis☆22Updated 7 years ago
- "Polymorphic" shellcode generator (x86)☆25Updated 10 years ago
- An offensive Powershell console☆30Updated 9 years ago
- ☆10Updated 8 years ago
- Python based module to find common vulnerabilities which lead to Windows privilege escalation☆30Updated 9 years ago
- ☆53Updated 10 years ago
- Volatility Framework plugin to detect various types of hooks as performed by banking Trojans☆40Updated 6 years ago
- A framework for creating modular bots/backdoors☆21Updated 10 years ago
- Powershell Persistence Locator☆66Updated 9 years ago
- Memory searching utilities☆42Updated 11 years ago
- Crack your macros like the math pros.☆33Updated 8 years ago
- PowerShell Empire module for logging USB keystrokes via ETW☆32Updated 8 years ago
- Fileless SQL Server CLR-based Custom Stored Procedure Command Execution☆36Updated 8 years ago
- PowerShell Module Bindings for Capstone/Keystone☆25Updated 8 years ago
- ☆18Updated 7 years ago
- SilkETW & SilkService☆40Updated 6 years ago
- ☆17Updated 10 years ago
- Mixing up CVE and MS like a pro☆25Updated 8 years ago