Alternatives and similar repositories for PE-File-Infection:

Users that are interested in PE-File-Infection are comparing it to the libraries listed below

• d35ha / PEReflectiveInjection
  Remote PE reflective injection with a simple reflective loader
  ☆31Updated 5 years ago
• d35ha / RunPE
  An example of PE hollowing injection technique
  ☆22Updated 5 years ago
• cocomelonc / 2022-01-14-malware-injection-13
  Code injection via ZwCreateSection, ZwUnmapViewOfSection. C++ example
  ☆17Updated 3 years ago
• Idov31 / UdpInspector
  Listing UDP connections with remote address without sniffing.
  ☆30Updated last year
• NUL0x4C / RecycleBinPersistence
  using the Recycle Bin to insure persistence
  ☆12Updated 2 years ago
• Lima-X / XOrCryptEx
  XOrCryptEx lightweight C Utility/Algorithm
  ☆11Updated 2 years ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Updated last year
• 0vercl0k / inject
  Yet another Windows DLL injector.
  ☆38Updated 3 years ago
• d35ha / xPE
  Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling
  ☆31Updated 5 years ago
• TRIKbranch / RunPE-X86--X64-
  With this RunPE you can easily inject your payload in any x86 or x64 program.
  ☆12Updated 5 years ago
• hasherezade / hidden_bee_tools
  Parser for a custom executable format from Hidden Bee malware (first stage)
  ☆39Updated 5 months ago
• rtyuiow / vmware-backdoor
  vmware-backdoor
  ☆33Updated 3 years ago
• SamLarenN / PePacker
  Simple PE Packer Which Encrypts .text Section
  ☆51Updated 7 years ago
• freesoul / netstub
  Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.
  ☆16Updated 6 years ago
• n4r1b / WdFilter-Research
  Data and structures regarding the research done on WdFilter
  ☆12Updated 4 years ago
• XaFF-XaFF / MBR-Overwrite-with-custom-message
  Overwrite MBR and add own custom message
  ☆15Updated 4 years ago
• hasherezade / libpeconv_tpl
  A ready-made template for a project based on libpeconv.
  ☆44Updated 4 months ago
• bytecode77 / enter-product-key-privilege-escalation
  Enter Product Key Volatile Environment LPE
  ☆12Updated 2 months ago
• ryan-weil / Code-Cave
  Injects position-dependent code into a code cave in an executable file, and applies relocations.
  ☆21Updated last year
• d35ha / DumpPE
  Dump mapped PE files from memory to the disk
  ☆19Updated 5 years ago
• d35ha / ShellInjector
  Execute an arbitrary command within the context of another process
  ☆19Updated 5 years ago
• HFaeiro / Lialis
  Rebuild of the original Remote Admin Tool
  ☆9Updated 5 years ago
• MahmoudZohdy / Anti-Analysis-DebuggerInjection
  Anti-Analysis technique, trick the debugger by Hiding events from it.
  ☆19Updated 3 years ago
• OrShazam / ChainEngine
  automates exploits using ROP chains, using ntdll-scraper
  ☆16Updated 2 years ago
• kkent030315 / anyelevate
  x64 Windows privilege elevation using anycall
  ☆21Updated 3 years ago
• alfarom256 / UserVAtoPhysical
  Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address
  ☆24Updated 3 years ago
• h4xu3lyn / NTLib
  Headers for linking your software with ntdll.dll
  ☆15Updated 4 years ago
• jnastarot / cleancall
  Library for using direct system calls
  ☆35Updated 3 weeks ago
• 7eRoM / elam
  A Practical example of ELAM (Early Launch Anti-Malware)
  ☆32Updated 3 years ago
• NATsCodes / ProcessHollowing
  Process Hollowing POC in CPP
  ☆15Updated 4 years ago