anti-analysis

There are 24 repositories under anti-analysis topic.

LordNoteworthy/al-khaser
Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
Language:C++5.6k 239 1001.1k
CheckPointSW/Evasions
Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into categories for ease of searching and understanding. Also provided are code samples, signature recommendations and countermeasures within each category for the described techniques.
Language:HTML370 24 557
0xor0ne/debugoff
Linux anti-debugging and anti-analysis rust library
Language:Rust281 5 324
NavyTitanium/Fake-Sandbox-Artifacts
This script allows you to create various artifacts on a bare-metal Windows computer in an attempt to trick malwares that looks for VM or analysis tools
Language:Python185 7 112
MahmoudZohdy/APICallProxy
Windows API Call Obfuscation
Language:C85 7 021
Lawxsz/bypass-virus-total
Script made in python to try to have as few detections as possible in Virustotal.
Language:Python78 2 49
Malwation/sentello
Sentello is python script that simulates the anti-evasion and anti-analysis techniques used by malware.
Language:Python70 5 011
philippelyp/ProTecT
ProTecT is an MS-DOS packer. While this packer is outdated, it uses a number of interesting anti-analysis techniques that are still relevant today.
Language:Assembly38 2 04
BinaryResearch/lepton
Lepton is a Lightweight ELF Parsing Tool that was designed specifically for analyzing and editing binaries with damaged or corrupted ELF headers.
Language:Assembly31 2 06
OMirzaei/AndrODet
AndrODet: An Adaptive Android Obfuscation Detector
Language:Python31 0 37
MahmoudZohdy/Anti-Analysis-DebuggerInjection
Anti-Analysis technique, trick the debugger by Hiding events from it.
Language:C++19 3 06
pikulet/anti-debugging
demo of common anti-analysis techniques used by malware
Language:C16 1 03
jaeyung1001/Anti-Debugging
Test for Anti-Debugging
Language:C++15 4 06
ntddk/blue
Some anti QEMU trick used by in-the-wild malware.
Language:C++12 2 09
Umbra999/Analytics-Preventer
Prevents Analytics for Websites and Games
Language:C#12 1 40
sysopfb/VM_Timing_Detect
11 4 04
MahmoudZohdy/FileRedirector
FileRedirector
Language:C6 3 00
v-lavrentikov/obfuscator
Binary obfuscation, anti-reversing, anti-debugging and av-bypass framework for Windows
Language:Go5 1 01
diante0x7/ThirdEye-Research
Documentation including tools and techniques learned during development of ThirdEye.
3 1 0
MahmoudZohdy/ESET-CrackMe-Analysis
ESET CrackMe Analysis
Language:C++3 1 01
ntddk/AntiqueRev
#seccamp 2014 CTF softsec (Reverse 400pt)
Language:C3 1 03
hsheric0210/AntiDebug.NET
Various .NET Anti-Debug and Anti-VM techniques
Language:C#2 3 50
yutianqaq/Anti-Sandbox-Go
Some anti-sandbox techniques implemented in Golang.
Language:Go2 2 0
ericyoc/obfuscation_techniques_poc
Demonstrates of eight common code obfuscation techniques
Language:Jupyter Notebook10

anti-analysis

LordNoteworthy/al-khaser

CheckPointSW/Evasions

0xor0ne/debugoff

NavyTitanium/Fake-Sandbox-Artifacts

MahmoudZohdy/APICallProxy

Lawxsz/bypass-virus-total

Malwation/sentello

philippelyp/ProTecT

BinaryResearch/lepton

OMirzaei/AndrODet

MahmoudZohdy/Anti-Analysis-DebuggerInjection

pikulet/anti-debugging

jaeyung1001/Anti-Debugging

ntddk/blue

Umbra999/Analytics-Preventer

sysopfb/VM_Timing_Detect

MahmoudZohdy/FileRedirector

v-lavrentikov/obfuscator

diante0x7/ThirdEye-Research

MahmoudZohdy/ESET-CrackMe-Analysis

ntddk/AntiqueRev

hsheric0210/AntiDebug.NET

yutianqaq/Anti-Sandbox-Go

ericyoc/obfuscation_techniques_poc