Skip to content

Commit 4351b8b

Browse files
EvilBytecodeEvilBytecode
authored
Update README.md
Updated Readme V1.0.6 Plans
1 parent bf73778 commit 4351b8b

File tree

1 file changed

+8
-0
lines changed

1 file changed

+8
-0
lines changed

README.md

Lines changed: 8 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -39,6 +39,14 @@ This module focuses on critical processes that should be monitored or protected.
3939
- **Critical Process**: Implements functionality to manage critical processes essential for system operation.
4040
- **SetDebugPrivilege**: Grants better permissions.
4141

42+
### TODO (V1.0.6 Plans):
43+
- Check Disk / RAM (If disk size is less than 100GB, exit; and if RAM size is less than 6GB, exit).
44+
- Flags and artifacts.
45+
- Execution time is lame, but I guess it can be added as well.
46+
- Hiding threads through (NtSetInformationThread).
47+
- Theres probably more, but i cant think of any right now.
48+
49+
4250
### Quick Nutshell
4351

4452
- Detects most anti-anti-debugging hooking methods on common anti-debugging functions by checking for bad instructions on function addresses (most effective on x64). It also detects user-mode anti-anti-debuggers like ScyllaHide and can detect some sandboxes that use hooking to monitor application behavior/activity (like [Tria.ge](https://tria.ge/)).

0 commit comments

Comments
 (0)