Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

TinyAntivirus is an open source antivirus engine designed for detecting polymorphic virus and disinfecting it.

Automatically generate AV byte signatures from sets of similar binaries.

Research on Anti-malware and other related security solutions

Yet another C++ Cobalt Strike beacon dropper with Compile-Time API hashing and custom indirect syscalls execution

Kernel Security driver used to block past, current and future process injection techniques on Windows Operating System.

Antivirus Killer

Advanced dynamic malware analysis tool.

Bypassing antivirus detection: old-school malware, new tricks

ClamFS is a FUSE-based user-space file system for Linux and BSD with on-access anti-virus file scanning

ShadeLoader is a shellcode loader designed to bypass most antivirus software. 壳代码, 杀毒软件, 绕过

The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers

This is a demo project to illustrate the way to verify and restore original SST in case of some malware hooks

Modified DexDump to build instruction graph from classes.dex

This repository contains Nanny-On agent source codes. Anyone can contribute to write and update the codes. Please join us.

Lightweight Threat Detection System - (Base)

Antivirus software was originally developed to detect and remove computer viruses, hence the name. However, with the proliferation of other malware, antivirus software started to protect from other computer threats. In particular, modern antivirus software can protect users from malicious browser helper objects (BHOs), browser hijackers, ransomware

PsSetCreateProcessNotifyRoutine/Ex/Ex2 hook

Minimal, customisable & powerful antivirus project

File antivirus