Skip to content

moldabekov/vbhardening

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
HU_VirtualBoxObfuscateHW2017-latest.zip
HU_VirtualBoxObfuscateHW2017-latest.zip
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
hu-obfuscate-vm.sh
hu-obfuscate-vm.sh
 
 
hu-patch-n-install-vbox.sh
hu-patch-n-install-vbox.sh
 
 

Repository files navigation

vbhardening

This repo is intented to obfuscate VM. It helps to hide VM from malware and other aggressive *ware, which refuses to run under VM.

How does it works?

Every hypervisor has it's unique fingerprint. Some techiniques are based on hardware detection only, as while as others rely on memdump, strings, network stack and so on.

So actually we patch all SLIC, DSDT and hardware resources as well. This helps to bypass most of the checks.

Usage

  • edit scripts (e.g. fix path)
  • run hu-patch-n-install-vbox.sh
  • run hu-obfuscate-vm.sh

License

MIT License

About

🖥 Advanced VM detection bypassing

Topics

obfuscation virtualbox virtual-machine virtualization bypass mitigation

Resources

Readme

License

MIT license
Activity

Stars

7 stars

Watchers

3 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages