Dos98 / ProcessInjectionTechniquesLinks
Learning Various Process Injection Techniques
☆21Updated 6 years ago
Alternatives and similar repositories for ProcessInjectionTechniques
Users that are interested in ProcessInjectionTechniques are comparing it to the libraries listed below
Sorting:
- Anti-Analysis technique, trick the debugger by Hiding events from it.☆19Updated 3 years ago
- Injects position-dependent code into a code cave in an executable file, and applies relocations.☆23Updated 2 years ago
- Fake Timestamps of Driver Certificates while keeping validity.☆18Updated 3 years ago
- x64 Windows privilege elevation using anycall☆21Updated 4 years ago
- Variety of different process injections implemented in C++☆25Updated 4 years ago
- A Windows API hooking library !☆31Updated 2 years ago
- x86/x64 dll injector☆30Updated 3 years ago
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆33Updated 5 years ago
- Static library and headers for linking your software with ntdll.dll☆32Updated 5 years ago
- Code Injection technique written in cpp language☆32Updated 7 years ago
- An implementation of the Process Hollowing technique.☆16Updated 4 years ago
- XOrCryptEx lightweight C Utility/Algorithm☆11Updated 3 years ago
- A class to gather information about a process, its threads and modules.☆24Updated 5 years ago
- x64 injector using LoadLibrary made in assembler (MASM)☆26Updated 6 years ago
- Dump mapped PE files from memory to the disk☆20Updated 6 years ago
- ☆25Updated 2 years ago
- Yet another Windows DLL injector.☆39Updated 3 years ago
- A set of small utilities, helpers for PIN tracers☆33Updated last year
- ☆7Updated 2 months ago
- Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address☆24Updated 3 years ago
- ☆29Updated 3 years ago
- Windbg extension that allows you analyze Control Flow Guard map☆35Updated 3 years ago
- Single header library to simplify the usage of direct syscalls. x64/x86☆12Updated 2 years ago
- Just an example of a well-known technique to detect memory tampering via Windows Working Sets.☆16Updated 3 years ago
- Some crazy PE executables protection kernel driver☆18Updated 5 years ago
- (This is a fork used primarily to submit patches into upstream repository) RpcView is a free tool to explore and decompile Microsoft RPC …☆19Updated 2 years ago
- automates exploits using ROP chains, using ntdll-scraper☆16Updated 3 years ago
- Remote PE reflective injection with a simple reflective loader☆31Updated 6 years ago
- Library for using direct system calls☆35Updated 4 months ago
- A compact tool for detecting AV/EDR hooks in default Windows libraries.☆31Updated 3 years ago