BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)
created at Nov. 24, 2019, 9:35 p.m.
Linker/Compiler/Tool detector for Windows, Linux and MacOS.
created at Nov. 29, 2018, 2:28 p.m.
Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide
created at Jan. 27, 2016, 5:26 a.m.
Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
created at Nov. 12, 2015, 6:35 p.m.
C++ application that uses memory and code hooks to detect packers
created at April 15, 2015, 11:02 p.m.
Checks with NSRL RDS servers looking for for hash matches
created at March 2, 2013, 4:35 p.m.
This is the development tree. Production downloads are at:
created at April 3, 2012, 4:36 a.m.