360trev / PELoadFromRamLinks
Very very useful example of loading and relocating the (Win32) DLL from memory (!) which allows many possibilities and much more flexibility to dynamically link code from many sources including realtime download from the web and also code signing!
☆21Updated 12 years ago
Alternatives and similar repositories for PELoadFromRam
Users that are interested in PELoadFromRam are comparing it to the libraries listed below
Sorting:
- Windows library for hooking functions across processes, injecting DLLs into other applications, and more. (Somewhat similar to MS Detours…☆11Updated 12 years ago
- Packer for PE and ELF, 32 and 64bits.☆22Updated 12 years ago
- Kernel (Ring0) - SSDT unhook driver☆15Updated 7 years ago
- eyuyan image rebuild tools source code☆13Updated 9 years ago
- Anti-AV compilation☆44Updated 12 years ago
- Anti-Anti-Debugger Plugins☆19Updated 12 years ago
- Miscellaneous IDA scripts and projects☆15Updated 4 years ago
- metasploit loader with antivirus bypass module☆18Updated 9 years ago
- Engine for communication with remote kernel debugger (KD, WinDbg) from drivers and applications☆37Updated 12 years ago
- Final Transparent encrypted version☆14Updated 8 years ago
- A sample project for using Capstone from a driver in Visual Studio 2015☆36Updated 9 years ago
- CVE-2014-0816☆25Updated 9 years ago
- windows create process with a dll load first time via LdrHook☆31Updated 9 years ago
- Miscellaneous old Exploit code and PoCs☆16Updated last year
- DLL Injection commandline utility☆26Updated 12 years ago
- Windows KExec☆25Updated 15 years ago
- OllyHeapTrace is a plugin for OllyDbg to trace the heap operations being performed by a process.☆55Updated 14 years ago
- Zerokit shared code☆17Updated 6 years ago
- wow64 syscall filter☆13Updated 11 years ago
- Exploit WinIo - Vidix and Run Shellcode in Windows Kerne ( local Privilege escalation )☆28Updated 10 years ago
- The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers☆35Updated 8 years ago
- Maltrace is a simple syscall tracer for Windows implemented through the use of PIN.☆24Updated 12 years ago
- ☆14Updated 10 years ago
- Scanning and identifying XOR encrypted PE files in PE resources☆29Updated 11 years ago
- Framework complet d'analyse de malware☆12Updated 9 years ago
- OpenHIPS prevents exploitation of Windows systems☆35Updated 12 years ago
- The dll that can hide itself and then delete itselft.☆31Updated 12 years ago
- Pay the Pony is hilarityware that uses the Reflective DLL injection library to inject into a remote process, encrypt and demand a ransom …☆28Updated 11 years ago
- OllyCallTrace is a plugin for OllyDbg to trace the call chain of a thread.☆54Updated 14 years ago
- ☆32Updated 3 years ago