Awesome Sandbox - Evasion

A summary about different projects/presentations/tools to test how to evade malware sandbox systems

Tools to test malware sandbox systems:

Windows:

• https://github.com/bi-zone/rdtsc-checkvirt-poc
• https://github.com/a0rtega/pafish
• https://github.com/joesecurity/pafishmacro
• https://github.com/hfiref0x/VMDE
• https://github.com/LordNoteworthy/al-khaser
• https://github.com/AlicanAkyol/sems
• https://github.com/ntddk/blue
• https://github.com/sysopfb/VM_Timing_Detect
• https://github.com/vysec/genHTA
• https://github.com/CheckPointSW/InviZzzible

Linux:

• https://github.com/srlkhmi/DeViL

Android:

• https://github.com/yzygitzh/ReDroid

Presentations:

• https://github.com/rrbranco/blackhat2012
• https://github.com/CheckPointSW/InviZzzible/blob/master/conferences/Skuratovich_Chailytko-DefeatingSandboxEvasion.pdf
• https://github.com/SilverMoonSecurity/SandboxEvasion/blob/master/summit2017-SandBox%20Evasion-v3.5.0-tailered.pptx

Academic papers

• https://www.christian-rossow.de/publications/sandprint-raid2016.pdf

Research Projects

• https://github.com/ricardojrdez/anti-analysis-tricks