AzAgarampur / PsForge
Process Hollowing demonstration & explanation
☆32Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for PsForge
- An initial proof of concept of a bootkit based on Cr4sh's DMABackdoorBoot☆59Updated last year
- A multi-staged malware that contains a kernel mode rootkit and a remote system shell.☆67Updated 3 years ago
- Weaponizing Gigabyte driver for priv escalation and bypass PPL☆68Updated 5 years ago
- Listing UDP connections with remote address without sniffing.☆30Updated last year
- Enabled / Disable LSA Protection via BYOVD☆62Updated 2 years ago
- ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption☆77Updated last year
- Inject shellcode to process using Windows NTAPI for bypassing EDRs and Antiviruses☆40Updated 3 years ago
- APC DLL Injector with NtQueueApcThread and wake up thread support☆44Updated 7 years ago
- A small commented POC for removing API hooks placed by AV/EDR.☆33Updated 4 years ago
- A simple dumper as FreshyCalls' PoC. That's what's trendy, isn't it? ¯\_(ツ)_/¯☆39Updated 3 years ago
- Process Injection: APC Injection☆27Updated 3 years ago
- Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping☆45Updated 2 years ago
- ☆98Updated 2 years ago
- C++ implementation of DOUBLEPULSAR usermode shellcode. Yet another Reflective DLL loader.☆29Updated 3 years ago
- ☆22Updated last year
- Standalone Metasploit-like XOR encoder for shellcode☆45Updated 5 months ago
- Dll injection through code page id modification in registry. Based on jonas lykk research☆117Updated last year
- A simple PE loader.☆25Updated last year
- SharpASM is a C# project that aims to automate ASM (i.e. shellcode) execution in .NET programs by exploiting code caves in RWX sections a…☆57Updated 2 years ago
- Bypass UAC at any level by abusing the Task Scheduler and environment variables☆27Updated 3 years ago
- Collection of shellcode injection and execution techniques☆16Updated 3 years ago
- API Hammering with C++20☆34Updated 2 years ago
- Recreating and reviewing the Windows persistence methods☆39Updated 2 years ago
- A Bumblebee-inspired Crypter☆80Updated last year
- A PoC tool for exploiting leaked process and thread handles☆30Updated 8 months ago
- Next gen process injection technique☆42Updated 4 years ago