Go Back   EXETOOLS FORUM > General > Source Code


Thread Tools Display Modes
Old 03-18-2015, 20:47
Insid3Code's Avatar
Insid3Code Insid3Code is offline
Join Date: May 2013
Location: Antartica
Posts: 71
Rept. Given: 36
Rept. Rcvd 60 Times in 30 Posts
Thanks Given: 11
Thanks Rcvd at 45 Times in 21 Posts
Insid3Code Reputation: 60
[C/C++ ] VMDE (kernelmode.info)

Virtual Machines Detection Enhanced from kernelmode.info
Yes, as you've already noticed! I appreciate all projects coded by EP_X0FF

VMDE source adapted to 2015 and posted on github. Do not consider it as fully functional vm detector, as it was a part of our with rinn work later used to develop VBox andtidetection patch.
System Requirements
Windows XP/Vista/7/8/8.1/10, no admin rights required.

VMDE comes with full source code. In order to build from source you need Microsoft Visual Studio 2013 U4 and later versions.

(c) 2013 - 2015 VMDE Project
For more info see hxxp://www.heise.de/security/artikel/VM-Erkennung-in-Malware-2131459.html, local copy of vmde.pdf can be found in Output directory.
PHP Code:
Computer Forensics
Reply With Quote
The Following User Gave Reputation+1 to Insid3Code For This Useful Post:
TQN (03-20-2015)
The Following User Says Thank You to Insid3Code For This Useful Post:
微笑一刀 (05-23-2015)

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On

Similar Threads
Thread Thread Starter Forum Replies Last Post
DSEFix x64 (kernelmode.info) Insid3Code x64 OS 1 05-15-2017 01:53
VirtualBox Hardened Loader x64 (kernelmode.info) Insid3Code x64 OS 16 08-06-2015 05:04
[C/C++] UACME (kernelmode.info) Insid3Code Source Code 0 03-29-2015 18:32
WinObjEx64 (kernelmode.info) Insid3Code Community Tools 1 03-02-2015 00:04
looking for adware info and homepage hijacker info chad1111 General Discussion 7 01-10-2005 21:02

All times are GMT +8. The time now is 20:18.

Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX