VBoxHardenedLoader - VirtualBox VM detection mitigation loader

  •        164

VirtualBox 5.2.4, 5.2.12, 5.2.18. For version below VirtualBox 5.0 use older release of this loader.

https://github.com/hfiref0x/VBoxHardenedLoader

Tags
Implementation
License
Platform

   




Related Projects

Anti-Plagiarism (Check on plagiarism)

  •    Java

Anti-Plagiarism - software designed to effectively detect and thereby prevent plagiarism. It is a versatile tool to deal with World Wide Web copy-pasting information from the assignment of authorship. The goal of this program is to help reduce the impact of plagiarism on education and educational institutions. At present, it distributes free software to detect plagiarism. Checking documents in a format *.rtf, *.doc, *.docx, *.pdf Check the source code C, C++, C#, Java, ...

Winpooch - Watchdog for Windows

  •    C

Winpooch is a watchdog for Windows (2000, XP, 2003, but only 32-bits). It detects modifications in your system, so as to detect a trojan or a spyware installation. It also includes a real-time anti-virus. Set your own security level for anti-spyware, ant.

Smart TCL

  •    Perl

A complete TCL script for eggdrop bots 1.6.x. Features:op,botnet,bnc,mass-commands,user-protector,anti-spam,anti-clone, repeat-kicker,extra-bitch,onjoin,topic-locker,limit,split-detect,split-protect, upgrade,shell-commands,auto-add(bots),remote-sends,.

peframe - PEframe is a open source tool to perform static analysis on (portable executable) malware.

  •    Python

PEframe is a open source tool to perform static analysis on Portable Executable malware and generic suspicious file. It can help malware researchers to detect packer, xor, digital signature, mutex, anti debug, anti virtual machine, suspicious sections and functions, and much more information about the suspicious files. Documentation will be available soon.

pafish - Pafish is a demonstration tool that employs several techniques to detect sandboxes and analysis environments in the same way as malware families do

  •    C

Pafish is a demonstration tool that employs several techniques to detect sandboxes and analysis environments in the same way as malware families do. The project is open source, you can read the code of all anti-analysis checks. You can also download the executable of the latest stable version.


fontfaceobserver - Webfont loading. Simple, small, and efficient.

  •    Javascript

Font Face Observer is a small @font-face loader and monitor (3.5KB minified and 1.3KB gzipped) compatible with any webfont service. It will monitor when a webfont is loaded and notify you. It does not limit you in any way in where, when, or how you load your webfonts. Unlike the Web Font Loader Font Face Observer uses scroll events to detect font loads efficiently and with minimum overhead. The FontFaceObserver constructor takes two arguments: the font-family name (required) and an object describing the variation (optional). The object can contain weight, style, and stretch properties. If a property is not present it will default to normal. To start loading the font, call the load method. It'll immediately return a new Promise that resolves when the font is loaded and rejected when the font fails to load.

awesome-iot - Awesome IoT

  •    Python

IoTSeeker This scanner will scan a network for specific types of IoT devices to detect if they are using the default, factory set credentials. nShield ★ 66 ⧗ 35 - An Easy and Simple Anti-DDoS solution for VPS,Dedicated Servers and IoT devices based on iptables.

pe-sieve - Scans a given process

  •    C++

PE-sieve is a light-weight tool that helps to detect malware running on the system, as well as to collect the potentially malicious material for further analysis. Recognizes and dumps variety of implants within the scanned process: replaced/injected PEs, shellcodes, hooks, and other in-memory patches. Detects inline hooks, Process Hollowing, Process Doppelgänging, Reflective DLL Injection, etc.

PS4-4.05-Kernel-Exploit - A fully implemented kernel exploit for the PS4 on 4.05FW

  •    Javascript

In this project you will find a full implementation of the "namedobj" kernel exploit for the PlayStation 4 on 4.05. It will allow you to run arbitrary code as kernel, to allow jailbreaking and kernel-level modifications to the system. This release however, does not contain any code related to defeating anti-piracy mechanisms or running homebrew. This exploit does include a loader that listens for payloads on port 9020 and will execute them upon receival. You can find fail0verflow's original write-up on the bug here, you can find my technical write-up which dives more into implementation specifics here.

PS4-4.55-Kernel-Exploit - A fully implemented kernel exploit for the PS4 on 4.55FW

  •    Javascript

In this project you will find a full implementation of the "bpf" kernel exploit for the PlayStation 4 on 4.55. It will allow you to run arbitrary code as kernel, to allow jailbreaking and kernel-level modifications to the system. This release however, does not contain any code related to defeating anti-piracy mechanisms or running homebrew. This exploit does include a loader that listens for payloads on port 9020 and will execute them upon receival. This bug was discovered by qwertyoruiopz, and can be found hosted on his website here.

Amber - Reflective PE packer.

  •    Assembly

amber is a reflective PE packer for bypassing security products and mitigations. It can pack regularly compiled PE files into reflective payloads that can load and execute itself like a shellcode. It enables stealthy in-memory payload deployment that can be used to bypass anti-virus, firewall, IDS, IPS products and application white-listing mitigations. If you want to learn more about the packing methodology used inside amber check out below. For more detail about usage, installation and how to decrease detection rate check out WIKI. Developed By Ege Balcı from INVICTUS/PRODAFT.

al-khaser - Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection

  •    C++

al-khaser is a PoC "malware" application with good intentions that aims to stress your anti-malware system. It performs a bunch of common malware tricks with the goal of seeing if you stay under the radar. You can download the latest release here: x86 | x64.

Scrollout F1 - An easy-to-use anti-spam email gateway

  •    C++

Scrollout F1 is an easy to use, already adjusted email firewall (gateway) offering free anti-spam and anti-virus protection aiming to secure existing email servers, old or new, such as Microsoft Exchange, Lotus Domino, Postfix, Exim, Sendmail, Qmail and others.

VirtualBox - Cross-Platform Virtualization Application

  •    C

VirtualBox is a powerful x86 and AMD64/Intel64 virtualization product for enterprise as well as home use. VirtualBox runs on Windows, Linux, Macintosh, and Solaris hosts and supports a large number of guest operating systems. So, for example, you can run Windows and Linux on your Mac. VirtualBox is a so-called hosted hypervisor. It requires an existing operating system to be installed. It can thus run alongside existing applications on that host.

linux-microsoft-ie-virtual-machines - Run Internet Explorer 8/9/10/11/MS-Edge Virtual machines from Microsoft under Linux via VirtualBox

  •    

Detailed step-by-step notes for installing the Microsoft provided Internet Explorer virtual machines under Linux using VirtualBox. Tested under Ubuntu 16.04LTS (previously 14.04LTS) with VirtualBox version 5.2.

angular-hmr - :fire: Angular Hot Module Replacement for Hot Module Reloading via @TipeIO

  •    TypeScript

Please see repository AngularClass/angular-seed for a working example.bootloader is only needed to detect that the dom is ready before bootstraping otherwise bootstrap. This is needed because that dom is already ready during reloading.

Super Av Anti Virus

  •    

Super Av Anti Virus is an open source anti virus with full source code

sqlcheck - Automatically identify anti-patterns in SQL queries

  •    C++

sqlcheck automatically detects common SQL anti-patterns. Such anti-patterns often slow down queries. Addressing them will, therefore, help accelerate queries.sqlcheck targets all major SQL dialects.

cloudflare-scrape - A Python module to bypass Cloudflare's anti-bot page.

  •    Python

A simple Python module to bypass Cloudflare's anti-bot page (also known as "I'm Under Attack Mode", or IUAM), implemented with Requests. Cloudflare changes their techniques periodically, so I will update this repo frequently. This can be useful if you wish to scrape or crawl a website protected with Cloudflare. Cloudflare's anti-bot page currently just checks if the client supports Javascript, though they may add additional techniques in the future.

ScyllaHide - Fork of ScyllaHide: https://bitbucket.org/NtQuery/scyllahide, Releases:

  •    C++

ScyllaHide is an advanced open-source x64/x86 usermode Anti-Anti-Debug library. It hooks various functions in usermode to hide debugging. This tool is intended to stay in usermode (ring3). If you need kernelmode (ring0) Anti-Anti-Debug please see TitanHide https://github.com/mrexodia/titanhide. PE x64 debugging is fully supported with plugins for x64dbg and IDA.





We have large collection of open source products. Follow the tags from Tag Cloud >>


Open source products are scattered around the web. Please provide information about the open source projects you own / you use. Add Projects.