Pafish is a demonstration tool that employs several techniques to detect sandboxes and analysis environments in the same way as malware families do.
The project is open source, you can read the code of all anti-analysis checks. You can also download the executable of the latest stable version.
It is licensed under GNU/GPL version 3.
The objective of this project is to collect usual tricks seen in malware samples. This allows us to study them, and test if our analysis environments are properly implemented.
Pafish is written in C and can be built with MinGW (gcc + make).
Check out “How to build” for detailed instructions.
Alberto Ortega (@a0rtega – profile)
The post pafish: employs several techniques to detect sandboxes and analysis environments appeared first on Penetration Testing.