0x9090 / RunPE
RunPE Code Injection
☆18Updated 3 years ago
Alternatives and similar repositories for RunPE:
Users that are interested in RunPE are comparing it to the libraries listed below
- ☆12Updated 7 years ago
- Botnet SDK Based on Zeus HTTP Malware (Educational Purposes)☆14Updated 5 years ago
- Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.☆63Updated 6 years ago
- medium-rare☆28Updated 5 years ago
- Slui File Handler Hijack UAC Bypass Local Privilege Escalation☆89Updated 2 years ago
- Alina Spark - Point of Sales Trojan☆46Updated 9 years ago
- Simple runtime crypter in C++.☆44Updated 10 years ago
- Process Hollowing techniques as used in many file Crypters (C/C++)☆82Updated 4 years ago
- Project aimed at creating a malware able to evolve and adapt to the various host machines through metamorphic modifications, spontaneous …☆41Updated 7 years ago
- HTTP BOTNET☆8Updated last year
- Gozi-MBR-rootkit Bootkit Modified☆68Updated 8 years ago
- Inject .Net payloads into other .Net assemblies on disk☆61Updated 5 years ago
- Parser for a custom executable format from Hidden Bee malware (first stage)☆39Updated 4 months ago
- Power Loader botnet☆39Updated 9 years ago
- GreenKit is an userland rootkit hiding its own files and mining bitcoins on compromised computers. Do /NOT/ download or use this rootkit …☆42Updated 7 years ago
- A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…☆43Updated 3 years ago
- Hollow Process / Dynamic Forking / RunPE injection technique implemented in Python☆53Updated 3 years ago
- APT, Cyber warfare, Penetration testing, Zero-day,Exploiting,Fuzzing,Privilege-Escalation,browser-security,Spyware,Malwres evade…☆34Updated 5 years ago
- Shim database persistence (Fin7 TTP)☆36Updated 4 years ago
- A minimal safe version of mimikatz to only allow the export of non-exportable Windows certificates☆25Updated 6 years ago
- The Grum Spam Bot☆20Updated 9 years ago
- Run Any Native PE file as a memory ONLY Payload , most likely as a shellcode using hta attack vector which interacts with Powershell.☆27Updated 7 years ago
- Antivirus Emulator Fingerprints☆27Updated 6 years ago
- UIAccess UAC Bypass using token duplication and keyboard events☆25Updated 5 years ago
- A FUD Backdoor Reverse Shell coded in CPP for any Windows distribution, that will fire a decoy app in the foreground while connecting bac…☆20Updated 5 years ago
- Kernel mode windows NT API logger☆22Updated 5 years ago
- ELF packer/crypter that aims to create hardened and stealthy troyans☆52Updated 3 years ago
- Process reimaging proof of concept code☆95Updated 5 years ago