Snippet List

Technique	Language	Author	Creation Date
Indirect Memory Writing	Delphi	DarkCoderSc	5 months, 3 weeks
Debug Registers, Hardware Breakpoints	Python	MatteoLodi	6 months
Detecting Virtual Environment Artefacts	C	weirdraven	6 months
Checking Pipe	C	HoIIovv	6 months
Detecting Online Sandbox	C#	Futex	6 months
WMI Event Subscriptions	PowerShell	1d8	11 months, 3 weeks
Adding antivirus exception	Python	Malfav.Win32	1 year, 1 month
System Binary Proxy Execution: Rundll32	Delphi	DarkCoderSc	1 year, 1 month
Removing Commands from SELinux Audit Logs	bash	Unprotect	1 year, 2 months
Deleting Troubleshoot Information and Core Dumps	bash	Unprotect	1 year, 2 months
Manipulating Debug Logs	bash	Unprotect	1 year, 2 months
XProtect Encryption Abuse	Python		1 year, 2 months
kernel flag inspection via sysctl	Python	fr0gger	1 year, 2 months
Exfiltration via SMTP	C#	Tasdir	1 year, 2 months
XBEL Recently Opened Files Check	Python	1d8	1 year, 2 months
Virtualization/Sandbox Evasion: User Activity Based Checks	Python	1d8	1 year, 3 months
Default Windows Wallpaper Check	Golang	1d8	1 year, 3 months
Abusing the Return Pointer	Assembly	0x_ror	1 year, 3 months
Impossible Disassembly	Rust	Gelven	1 year, 4 months
Detecting Virtual Environment Process	C++	0x_ror	1 year, 4 months
Process Argument Spoofing	Python	Wietze	1 year, 4 months
Process Argument Spoofing	C	Wietze	1 year, 4 months
Event Triggered Execution: Linux Inotify	Python	1d8	1 year, 4 months
API Hammering	C++	0x_ror	1 year, 4 months
Replication Through Removable Media	Python	1d8	1 year, 5 months
QEMU CPU brand evasion	C++	kernelwernel	1 year, 6 months
bochs CPU oversights evasion	C++	kernelwernel	1 year, 6 months
Impair Defenses: Disable Windows Event Logging	PowerShell	0x0d4y	1 year, 7 months
Impair Defenses: Disable Windows Event Logging	bash	0x0d4y	1 year, 7 months
AppInit DLL Injection	C	1d8	1 year, 7 months

Filter

User

Language

Clear