3gstudent/Inject-dll-by-Process-Doppelganging external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

3gstudent/Inject-dll-by-Process-Doppelganging

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/3gstudent/Inject-dll-by-Process-Doppelganging)

Close

3gstudent / Inject-dll-by-Process-DoppelgangingView on GitHubMore

• External links
• Readme badge

Process Doppelgänging

☆162Dec 19, 2017Updated 8 years ago

Alternatives and similar repositories for Inject-dll-by-Process-Doppelganging

Users that are interested in Inject-dll-by-Process-Doppelganging are comparing it to the libraries listed below

• Spajed / processrefund

  View on GitHub
  An attempt at Process Doppelgänging
  ☆183Dec 21, 2017Updated 8 years ago
• zer0mem / VadScanner

  View on GitHub
  PoC of BOOST-ed _EPROCESS.VadRoot iterating
  ☆27May 21, 2014Updated 11 years ago
• hcyang1012 / SecurityMonitor

  View on GitHub
  ☆12Feb 19, 2017Updated 9 years ago
• Synestraa / Highcall-Library

  View on GitHub
  usermode standalone kernel interface
  ☆111Jul 9, 2018Updated 7 years ago
• aaaddress1 / APCInjector-BYPASS-AV

  View on GitHub
  ☆19Jul 20, 2015Updated 10 years ago
• AzureGreen / WinNT-Learning

  View on GitHub
  Notes my learning steps about Windows-NT
  ☆23May 18, 2017Updated 8 years ago
• IgorKorkin / AllMemPro

  View on GitHub
  AllMemPro
  ☆46Jan 15, 2018Updated 8 years ago
• johnsonjason / RVDbg

  View on GitHub
  RVDbg is a debugger/exception handler for Windows processes and has the capability to circumvent anti-debugging techniques. (Cleaner, doc…
  ☆72Sep 5, 2020Updated 5 years ago
• uniking / TDI-Demo

  View on GitHub
  ☆17Mar 3, 2016Updated 10 years ago
• hasherezade / process_doppelganging

  View on GitHub
  My implementation of enSilo's Process Doppelganging (PE injection technique)
  ☆638Aug 30, 2022Updated 3 years ago
• Eva1216 / VT

  View on GitHub
  ☆27May 27, 2017Updated 8 years ago
• NtRaiseHardError / Dreadnought

  View on GitHub
  PoC for detecting and dumping code injection (built and extended on UnRunPE)
  ☆58Oct 23, 2018Updated 7 years ago
• MeeSong / Sunstrider

  View on GitHub
  Analyze PatchGuard
  ☆56Aug 19, 2018Updated 7 years ago
• binbibi / CallbackEx

  View on GitHub
  Demo List cm/ps/ob/minifilter callback And Patch/Bypass it
  ☆29Dec 5, 2017Updated 8 years ago
• hatRiot / DelayLoadInject

  View on GitHub
  Code injection via delay load libraries
  ☆36Sep 20, 2017Updated 8 years ago
• AzureGreen / ArkProtect

  View on GitHub
  An Ark tool project，run on Win7 x86/x64
  ☆118Jul 11, 2017Updated 8 years ago
• hasherezade / chimera_pe

  View on GitHub
  ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…
  ☆229Mar 22, 2023Updated 2 years ago
• uItra / Injectora

  View on GitHub
  x86/x64 manual mapping injector using the JUCE library
  ☆89Jun 29, 2020Updated 5 years ago
• louk78 / Virgo

  View on GitHub
  Minifilter Driver
  ☆15Feb 10, 2017Updated 9 years ago
• johnsonjason / UTKModule

  View on GitHub
  Modifies the code of the RtlUserThreadStart callback and reads the arguments passed to it. Then it changes the initial execution argument…
  ☆15Mar 4, 2018Updated 8 years ago
• StrikerX3 / haxmclient

  View on GitHub
  HAXM hypervisor client
  ☆18Nov 30, 2018Updated 7 years ago
• nickcano / ReloadLibrary

  View on GitHub
  A quick-and-dirty anti-hook library proof of concept.
  ☆105Aug 29, 2018Updated 7 years ago
• KelvinMsft / NoTruth

  View on GitHub
  ☆99Oct 6, 2017Updated 8 years ago
• tandasat / FU_Hypervisor

  View on GitHub
  A hypervisor hiding user-mode memory using EPT
  ☆107Jan 28, 2018Updated 8 years ago
• MalwareTech / ZombifyProcess

  View on GitHub
  Inject code into a legitimate process
  ☆146Dec 9, 2014Updated 11 years ago
• BrunoMCBraga / Kernel-Whisperer

  View on GitHub
  ☆29Jan 15, 2021Updated 5 years ago
• ldebug / ObRegisterCallBacksByPass

  View on GitHub
  Modify process handle permissions
  ☆61Nov 30, 2016Updated 9 years ago
• AzureGreen / InjectCollection

  View on GitHub
  A collection of injection via vc++ in ring3
  ☆243Apr 3, 2017Updated 8 years ago
• fIappy / infhook19041

  View on GitHub
  ☆125May 23, 2020Updated 5 years ago
• ghonsa / DeviceDmp

  View on GitHub
  Windows device tree walker
  ☆15Sep 19, 2018Updated 7 years ago
• BenjaminSoelberg / ReflectivePELoader

  View on GitHub
  Reflective PE loader for DLL injection
  ☆187Oct 12, 2017Updated 8 years ago
• yardenshafir / SymlinkCallback

  View on GitHub
  A driver that hooks C: volume using symbolic link callback to track all FS access to the volume
  ☆109Apr 24, 2020Updated 5 years ago
• zouxianyu / KernelHiddenExecute

  View on GitHub
  Hide codes/data in the kernel address space.
  ☆188May 8, 2021Updated 4 years ago
• alexvogt91 / NetDriver

  View on GitHub
  kernel-mode TDI client which can send and receive HTTP requests
  ☆56Jun 9, 2018Updated 7 years ago
• wolk-1024 / WoW64Utils

  View on GitHub
  WoW64 -> x64
  ☆18Oct 1, 2016Updated 9 years ago
• zhuhuibeishadiao / exploit-RemoteDesktopServerDriver

  View on GitHub
  exploit termdd.sys(support kb4499175)
  ☆61Jul 15, 2019Updated 6 years ago
• dro / uac-launchinf-poc

  View on GitHub
  Windows 10 UAC bypass PoC using LaunchInfSection
  ☆35Aug 3, 2018Updated 7 years ago
• djhohnstein / ProcessReimaging

  View on GitHub
  Process reimaging proof of concept code
  ☆97Jun 21, 2019Updated 6 years ago
• CylanceVulnResearch / ReflectiveDLLRefresher

  View on GitHub
  Universal Unhooking
  ☆326Sep 19, 2018Updated 7 years ago