vvelitkn / Evasion-EscaperLinks
Evasion Escaper is a project aimed at evading the checks that malicious software performs to detect if it's running in a virtual environment or sandbox, and to pass all such checks successfully.
☆107Updated 6 months ago
Alternatives and similar repositories for Evasion-Escaper
Users that are interested in Evasion-Escaper are comparing it to the libraries listed below
Sorting:
- ETW based POC to identify direct and indirect syscalls☆187Updated 2 years ago
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆118Updated last year
- A Poc on blocking Procmon from monitoring network events☆106Updated 2 weeks ago
- ☆145Updated 3 years ago
- Small PoC of using a Microsoft signed executable as a lolbin.☆138Updated 2 years ago
- ☆99Updated 3 years ago
- Detect strange memory regions and DLLs☆185Updated 3 years ago
- Finding secrets in kernel and user memory☆116Updated last year
- It's pointy and it hurts!☆126Updated 2 years ago
- Interceptor is a kernel driver focused on tampering with EDR/AV solutions in kernel space☆124Updated 2 years ago
- Deleting Shadow Copies In Pure C++☆114Updated 2 years ago
- ☆113Updated 3 years ago
- Experiment on reproducing Obfuscate & Sleep☆146Updated 4 years ago
- 64bit WIndows 10 shellcode dat pops dat calc - Dynamic & Null Free☆63Updated 2 years ago
- ☆114Updated 2 years ago
- ☆136Updated 3 years ago
- Resources and articles I need to take a look at. Mostly about malware/exploit development and analysis.☆83Updated 3 years ago
- Compile shellcode into an exe file from Windows or Linux.☆68Updated 2 months ago
- A simple commandline application to automatically decrypt strings from Obfuscator protected binaries☆46Updated last year
- ☆86Updated 2 years ago
- CreateRemoteThread: how to pass multiple parameters to the remote thread function without shellcode.☆135Updated last month
- ☆108Updated 2 years ago
- ☆52Updated 10 months ago
- Identify and exploit leaked handles for local privilege escalation.☆109Updated 2 years ago
- ☆111Updated 2 years ago
- ShellWasp is a tool to help build shellcode that utilizes Windows syscalls, while overcoming the portability problem associated with Wind…☆167Updated 2 years ago
- XOR decrypting shellcode using the GPU with OpenCL.☆114Updated 3 months ago
- C# implementation to produce ROR-13 numeric hash for given function API name☆33Updated 6 years ago
- Windows LPE exploit for CVE-2022-37969☆136Updated 2 years ago
- Kernel Mode Driver for Elevating Process Privileges☆132Updated 2 years ago