Awesome

Awesome Sandbox - Evasion

A summary about different projects/presentations/tools to test how to evade malware sandbox systems

Tools to test malware sandbox systems:

Windows:

• https://github.com/bi-zone/rdtsc-checkvirt-poc
• https://github.com/a0rtega/pafish
• https://github.com/joesecurity/pafishmacro
• https://github.com/hfiref0x/VMDE
• https://github.com/LordNoteworthy/al-khaser
• https://github.com/AlicanAkyol/sems
• https://github.com/ntddk/blue
• https://github.com/sysopfb/VM_Timing_Detect
• https://github.com/vysec/genHTA
• https://github.com/CheckPointSW/InviZzzible
• https://github.com/Arvanaghi/CheckPlease

Linux:

• https://github.com/srlkhmi/DeViL

Android:

• https://github.com/yzygitzh/ReDroid

Presentations:

• https://github.com/rrbranco/blackhat2012
• https://github.com/CheckPointSW/InviZzzible/blob/master/conferences/Skuratovich_Chailytko-DefeatingSandboxEvasion.pdf
• https://github.com/SilverMoonSecurity/SandboxEvasion/blob/master/summit2017-SandBox%20Evasion-v3.5.0-tailered.pptx

Academic papers

• https://www.christian-rossow.de/publications/sandprint-raid2016.pdf

Research Projects

• https://github.com/ricardojrdez/anti-analysis-tricks