360trev / PELoadFromRam
Very very useful example of loading and relocating the (Win32) DLL from memory (!) which allows many possibilities and much more flexibility to dynamically link code from many sources including realtime download from the web and also code signing!
☆21Updated 12 years ago
Alternatives and similar repositories for PELoadFromRam:
Users that are interested in PELoadFromRam are comparing it to the libraries listed below
- wow64 syscall filter☆13Updated 10 years ago
- Zerokit shared code☆16Updated 6 years ago
- Analysis and Modification Tool for Executables☆16Updated 6 years ago
- metasploit loader with antivirus bypass module☆17Updated 8 years ago
- Kernel (Ring0) - SSDT unhook driver☆14Updated 7 years ago
- PE Infector/Cryptor source code☆15Updated 7 years ago
- Minifilter Driver☆15Updated 8 years ago
- Framework complet d'analyse de malware☆12Updated 9 years ago
- A c++, QT gui based memory engine☆13Updated 7 years ago
- Various libraries focused on examining/parsing NTFS-specific structures☆16Updated 9 years ago
- does reflective dll injection☆8Updated 11 years ago
- Ssdt Hook Detection tool☆13Updated 8 years ago
- Final Transparent encrypted version☆14Updated 8 years ago
- Windows registry files interactive viewer☆9Updated 7 years ago
- The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers☆34Updated 8 years ago
- Pafish4vs is based on [Pafish]( https://github.com/a0rtega/pafish) , just ported to the VS (VC) compiler (X64 , X86) .☆13Updated 8 years ago
- ☆14Updated 8 years ago
- IDA WhatAPIs PlugIn☆7Updated 9 years ago
- An aggregate of tools used in the core of vmp_dbg plus other parsing utils to parse vmp bc.☆15Updated 8 years ago
- Lists work items being queued currently.☆13Updated 9 years ago
- Inject codes to another process to watch and operate other process. This is usually used as anti-virus software.☆10Updated 9 years ago
- A library that allows hook any imported function from the IAT (works only in x64)☆11Updated 5 years ago
- simple plugin for lastest olly versions to display the callstack☆16Updated 11 years ago
- Packer for PE and ELF, 32 and 64bits.☆22Updated 11 years ago
- ☆13Updated 7 years ago
- Windows inject☆16Updated 6 years ago
- ☆12Updated 8 years ago
- Native Development Kit for Vista 64bit And Later, by me, Based on NDK Headers 1.0, by Alex Ionescu☆16Updated 9 years ago
- A dns server that use to hijack other dns request in a wifi network for redirect to your custem http server ..☆17Updated 9 years ago
- Dark Cloud Virus☆7Updated 7 years ago