whichbuffer / AntidebugLinks
Defeating Anti-Debugging Techniques for Malware Analysis
☆13Updated 2 years ago
Alternatives and similar repositories for Antidebug
Users that are interested in Antidebug are comparing it to the libraries listed below
Sorting:
- Help deobfuscate VBScript☆15Updated 3 years ago
- Collection of generic YARA rules☆16Updated last year
- ☆24Updated 3 years ago
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated 2 years ago
- ☆27Updated 8 months ago
- The repository accompanying the Buer Emulation workshop☆24Updated 3 years ago
- Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff☆55Updated last week
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…☆20Updated 2 years ago
- ☆22Updated last year
- Rapidly building a Windows 10 system to use for dynamic malware analysis (sandbox), sending data to Elastic Cloud.☆50Updated last year
- powershell script i wrote that can suspend an arbitrary process (with limits)☆20Updated 2 years ago
- A collection of my presentation materials.☆17Updated last year
- Python wrappers for mal_unpack☆36Updated last year
- Collection of my own detection rules☆21Updated last month
- ☆22Updated 2 years ago
- Identifies metadata of .NET binary files.☆21Updated last year
- Scans a list of raccoon servers from Tria.ge and extracts the config☆15Updated 2 years ago
- ☆12Updated 4 years ago
- Sources Codes of many Office Malwares☆17Updated 2 years ago
- PoC MSI payload based on ASEC/AhnLab's blog post☆23Updated 2 years ago
- Loading and executing shellcode in C# without PInvoke.☆22Updated 3 years ago
- A Docker container used to easily compile Nim binaries generated by my tools (NimPackt and NimPlant)☆16Updated last year
- Simple POC of Voice C2 using Speech Recognition☆13Updated 3 years ago
- Extension functionality for the NightHawk operator client☆27Updated last year
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆46Updated 2 years ago
- Tricard - Malware Sandbox Fingerprinting☆20Updated last year
- Writing Your Own Ticket to the Cloud Like APT: A Deep-dive to AD FS Attacks, Detections, and Mitigations☆12Updated 2 years ago
- Golang bindings for PE-sieve☆42Updated last year
- ☆12Updated 3 years ago