3gstudent / Inject-dll-by-APC

Related projects ⓘ

Alternatives and complementary repositories for Inject-dll-by-APC

• adrianyy / KeInject
  Kernel LdrLoadDll injector
  ☆258Updated 6 years ago
• hasherezade / module_overloading
  A more stealthy variant of "DLL hollowing"
  ☆337Updated 8 months ago
• secrary / Hooking-via-InstrumentationCallback
  codes for my blog post: https://secrary.com/Random/InstrumentationCallback/
  ☆167Updated 6 years ago
• kkent030315 / anycall
  x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration
  ☆219Updated 2 years ago
• 0xcpu / ExecutiveCallbackObjects
  Research on Windows Kernel Executive Callback Objects
  ☆278Updated 4 years ago
• notscimmy / pplib
  Elevate a process to be a protected process
  ☆142Updated 5 years ago
• repnz / apc-research
  APC Internals Research Code
  ☆158Updated 4 years ago
• D4stiny / ThreadJect
  Manual DLL Injector using Thread Hijacking.
  ☆231Updated 6 years ago
• kkent030315 / NoPatchGuardCallback
  x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code
  ☆196Updated 3 years ago
• BenjaminSoelberg / ReflectivePELoader
  Reflective PE loader for DLL injection
  ☆167Updated 7 years ago
• JustasMasiulis / wow64pp
  A modern c++ implementation of windows heavens gate
  ☆194Updated 4 years ago
• 0xcpu / WinAltSyscallHandler
  Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999
  ☆204Updated 5 years ago
• repnz / autochk-rootkit
  Reverse engineered source code of the autochk rootkit
  ☆196Updated 5 years ago
• 3gstudent / Inject-dll-by-Process-Doppelganging
  Process Doppelgänging
  ☆154Updated 6 years ago
• anzelesnik / SyscallHook
  System call hook for Windows 10 20H1
  ☆478Updated 3 years ago
• zouxianyu / KernelHiddenExecute
  Hide codes/data in the kernel address space.
  ☆183Updated 3 years ago
• not-wlan / driver-hijack
  ☆152Updated 5 years ago
• mike1k / HookHunter
  Analyze patches in a process
  ☆245Updated 3 years ago
• Cr4sh / KernelForge
  A library to develop kernel level Windows payloads for post HVCI era
  ☆365Updated 3 years ago
• zhuhuibeishadiao / NewHideDriverEx
  Hide Driver By MiProcessLoaderEntry
  ☆280Updated 5 years ago
• gmh5225 / CallMeWin32kDriver
  Load your driver like win32k.sys
  ☆247Updated 2 years ago
• SinaKarvandi / Process-Magics
  This is a collection of interesting codes about Windows Process creation.
  ☆230Updated 9 months ago
• d35ha / xObf
  Simple x86/x86_64 instruction level obfuscator based on a basic SBI engine
  ☆244Updated last year
• hasherezade / chimera_pe
  ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…
  ☆216Updated last year
• MiroKaku / Nt-Modules
  Collect different versions of Crucial modules.
  ☆127Updated 3 months ago
• Barakat / CVE-2019-16098
  Local privilege escalation PoC exploit for CVE-2019-16098
  ☆191Updated 5 years ago
• markhc / windbg_to_c
  Translates WinDbg "dt" structure dump to a C structure
  ☆126Updated 8 years ago
• hoangprod / LeoSpecial-VEH-Hook
  Vectored Exception Handling Hooking Class
  ☆145Updated 5 years ago
• kkent030315 / PageTableInjection
  Code Injection, Inject malicious payload via pagetables pml4.
  ☆226Updated 3 years ago