0xZ0F / CPPMemory
Code that can be used as a reference, library, or inspiration for hacking Windows memory.
☆50Updated 4 years ago
Related projects: ⓘ
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆19Updated 6 years ago
- ☆40Updated this week
- Kernel mode windows NT API logger☆21Updated 5 years ago
- Parser for a custom executable format from Hidden Bee malware (first stage)☆39Updated last week
- Windows GPU rootkit PoC by Team Jellyfish☆35Updated 9 years ago
- A repository where I share my injection implemintations☆28Updated 4 years ago
- Rite Of Passage ROP Injector☆33Updated 5 years ago
- A ready-made template for a project based on libpeconv.☆40Updated last year
- ☆31Updated 4 years ago
- ☆48Updated 4 years ago
- Exploits I've authored☆59Updated 5 years ago
- ☆35Updated 5 years ago
- ☆29Updated this week
- Antivirus Emulator Fingerprints☆25Updated 5 years ago
- ☆58Updated this week
- Sysmon shenanigans☆65Updated 3 years ago
- PoC for detecting and dumping process hollowing code injection☆50Updated 5 years ago
- A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…☆41Updated 3 years ago
- Protects and logs suspicious and malicious usage of .NET CSC.exe and Runtime C# Compilation☆25Updated 6 years ago
- "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …☆39Updated 4 years ago
- ☆44Updated this week
- Proof of concept memory anti-forensic toolkit designed for hiding various artifacts inside the memory dump during memory acquisition on M…☆10Updated 4 years ago
- ☆22Updated 4 years ago
- NT AUTHORITY\SYSTEM☆37Updated 4 years ago
- Bare template for a Kernel Mode Driver☆50Updated 4 years ago
- Reflective DLL Injection style process infector☆19Updated 6 years ago
- ☆21Updated 3 years ago
- ☆45Updated 6 years ago