Codeh4ck / MemoryPEInjector
A tool that reads a PE file from a byte array buffer and injects it into memory.
☆28Updated 5 years ago
Related projects: ⓘ
- With this RunPE you can easily inject your payload in any x86 or x64 program.☆13Updated 5 years ago
- Bypass UAC by abusing shell protocol handlers☆13Updated 3 years ago
- Loader and RunPE file executer☆17Updated 5 years ago
- Reduce Dynamic Analysis Detection Rates With Built-In Unhooker, Anti Analysis Techniques, And String Obfuscator Modules.☆18Updated last year
- Simple remote administration tool. Written in c++ and MASM.☆18Updated 6 years ago
- Rebuild of the original Remote Admin Tool☆9Updated 4 years ago
- using the Recycle Bin to insure persistence☆11Updated 2 years ago
- Program to leak anti-virus behaviour and such☆14Updated 5 years ago
- Remote PE reflective injection with a simple reflective loader☆28Updated 5 years ago
- Basic disassembly technique to slow down disasm process☆10Updated 4 years ago
- Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.☆15Updated 5 years ago
- ☆10Updated 4 years ago
- Code injection via ZwCreateSection, ZwUnmapViewOfSection. C++ example☆17Updated 2 years ago
- Dump mapped PE files from memory to the disk☆17Updated 5 years ago
- ☆27Updated this week
- .net based packer/obfuscator with apc based pe injection☆14Updated 8 years ago
- Simple PE Packer Which Encrypts .text Section☆45Updated 7 years ago
- An attempt at reversing WindowsDefender☆19Updated 5 months ago
- stack based buffer overflow in MsIo64.sys, Proof of Concept Local Privilege Escalation to nt authority/system☆10Updated 3 years ago
- Rootkit loader for your rootkit dll, x86/x64 system wide DLL injection (+appinit_dlls registry create) uses heavens gate☆17Updated 3 years ago
- DarkRats Standalone HVNC☆23Updated 2 years ago
- Phantom DLL Hollowing method implemented in modmap☆17Updated 3 years ago
- ☆27Updated this week
- A very weird RAT☆19Updated 2 years ago
- Windows GPU rootkit PoC by Team Jellyfish☆35Updated 9 years ago
- Small class to help perform syscalls.☆19Updated last year
- Anti-Analysis technique, trick the debugger by Hiding events from it.☆18Updated 3 years ago
- Infects PE files with a shellcode☆15Updated 5 years ago
- 💻 Windows 10 Kernel-mode rootkit☆30Updated 2 years ago
- Load Encrypted Dll Using LoadLibraryA, Keep The Dll Encrypted on disc all the time and decrypt it only in memory.☆17Updated 3 years ago