0x9090 / RunPE
RunPE Code Injection
☆18Updated 3 years ago
Alternatives and similar repositories for RunPE:
Users that are interested in RunPE are comparing it to the libraries listed below
- Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.☆63Updated 7 years ago
- Slui File Handler Hijack UAC Bypass Local Privilege Escalation☆91Updated 2 years ago
- APT, Cyber warfare, Penetration testing, Zero-day,Exploiting,Fuzzing,Privilege-Escalation,browser-security,Spyware,Malwres evade…☆34Updated 6 years ago
- ☆12Updated 7 years ago
- Shim database persistence (Fin7 TTP)☆37Updated 5 years ago
- medium-rare☆28Updated 5 years ago
- Run Any Native PE file as a memory ONLY Payload , most likely as a shellcode using hta attack vector which interacts with Powershell.☆27Updated 7 years ago
- Alina Spark - Point of Sales Trojan☆46Updated 10 years ago
- Botnet SDK Based on Zeus HTTP Malware (Educational Purposes)☆14Updated 5 years ago
- C++ implant that interfaces with a SK8PARK server☆48Updated 3 years ago
- Simple Process Hollowing in C#☆68Updated 7 years ago
- Antivirus Emulator Fingerprints☆27Updated 6 years ago
- Simple runtime crypter in C++.☆44Updated 10 years ago
- HTTP BOTNET☆7Updated last year
- Proxy system calls over an RPC channel☆97Updated 3 years ago
- A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…☆43Updated 3 years ago
- Inject .Net payloads into other .Net assemblies on disk☆61Updated 5 years ago
- Alina POS Source Code + Rootkit☆23Updated 9 years ago
- (Sim)ulate (Ba)zar Loader☆29Updated 4 years ago
- PoC designed to evade userland-hooking anti-virus.☆88Updated 5 years ago
- A simple script to generate JScript code for calling Win32 API functions using XLM/Excel 4.0 macros via Excel.Application "ExecuteExcel4M…☆88Updated 5 years ago
- A More Comfortable (remote) SHell with full pty support and both reverse / bindport connection mode.☆30Updated 11 years ago
- The Grum Spam Bot☆20Updated 10 years ago
- Gozi-MBR-rootkit Bootkit Modified☆68Updated 8 years ago
- Parser for a custom executable format from Hidden Bee malware (first stage)☆39Updated 6 months ago
- Project aimed at creating a malware able to evolve and adapt to the various host machines through metamorphic modifications, spontaneous …☆41Updated 7 years ago
- few months old but better than nothing☆58Updated 3 years ago
- Randomly changes Win32/64 PE Files for 'safer' uploading to malware and sandbox sites.☆131Updated 11 years ago
- foolav successor - loads DLL, executable or shellcode into memory and runs it effectively bypassing AV☆111Updated 3 years ago
- A small commented POC for removing API hooks placed by AV/EDR.☆33Updated 4 years ago