PE file mapping and manipulation package.
☆36May 6, 2022Updated 3 years ago
Alternatives and similar repositories for MapPE
Users that are interested in MapPE are comparing it to the libraries listed below
Sorting:
- Assembly block for finding and calling the windows API functions inside import address table(IAT) of the running PE file.☆84May 3, 2023Updated 2 years ago
- Several self-defense shellcodes☆23Jul 16, 2019Updated 6 years ago
- golang 实现 sqlmap☆27Apr 5, 2021Updated 4 years ago
- reveal and detect of common hooks under win32☆13Sep 23, 2020Updated 5 years ago
- PE Injection with ring3 hook bypass☆10May 3, 2021Updated 4 years ago
- NativePayload_TiACBT (Remote Thread Injection + C# Async Method + CallBack Functions Technique)☆13Jun 6, 2023Updated 2 years ago
- Tartocitron is a repo to have fun with malwares and the Rust language. This repo provides working examples of dropper written in Rust.☆11May 31, 2022Updated 3 years ago
- Visualy create and connect nodes. Generates xml for python multiprocessing pipeline. (needs rewrite, lots of dead code, specialized appli…☆12Sep 6, 2018Updated 7 years ago
- Windows x64 Process Injection via Ghostwriting with Dynamic Configuration☆29Oct 29, 2021Updated 4 years ago
- Modified Version of Melkor @FuzzySecurity capable of creating disposable AppDomains in injected processes.☆28Sep 8, 2021Updated 4 years ago
- Work files for my blog post "Code Caving in a PE file.☆16Dec 18, 2016Updated 9 years ago
- Released presentations of my talks + code that used during these talks☆15Sep 5, 2024Updated last year
- Some stuff for PHD2021☆14May 21, 2025Updated 9 months ago
- C# project to create or modify existing LNKs☆54Oct 18, 2022Updated 3 years ago
- A PoC package for hosting the CLR and executing .NET from Go☆78Jul 9, 2024Updated last year
- ☆26Jul 2, 2020Updated 5 years ago
- A simple Linux in-memory .so loader☆33Mar 29, 2023Updated 2 years ago
- A small utility to run raw code chunks in the executable memory area.☆15Feb 6, 2015Updated 11 years ago
- Basic multi platform meterpreter loader module.☆16Jul 21, 2020Updated 5 years ago
- Encrypt embedded go files using age.☆49Oct 21, 2021Updated 4 years ago
- 使用MiniDumpWriteDump与RtlReportSilentProcessExit实现提取lsass.dmp的工具☆11Dec 29, 2021Updated 4 years ago
- LoadLibrary for offensive operations☆33Dec 14, 2021Updated 4 years ago
- Command line & PPID spoofing☆29Apr 15, 2023Updated 2 years ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆33Nov 14, 2020Updated 5 years ago
- ☆11Jan 29, 2021Updated 5 years ago
- IDA Debugger Module to Dynamically Synchronize Memory and Registers with third-party Backends (Tenet, Unicorn, GDB, etc.)☆17Nov 10, 2021Updated 4 years ago
- Check a Windows PE file for some basic security flags☆12Jun 2, 2015Updated 10 years ago
- Obtain the (revocation) status of an X.509 certificate.☆16Feb 10, 2026Updated 2 weeks ago
- Proof of concept open source implementation of an UAC bypass exploit, based in 2 windows failures.☆12Jun 2, 2020Updated 5 years ago
- An AutoUpdate Framework for Windows Applications☆13Jan 25, 2021Updated 5 years ago
- Starts an ngrok TCP tunnel and notifies you of the URL. Perfect for automated remote SSH connections.☆14Jan 24, 2021Updated 5 years ago
- Run python from a single exe☆35May 1, 2022Updated 3 years ago
- medium-rare☆28Nov 21, 2019Updated 6 years ago
- A C++14/17 header-only Windows memory editing library with a focus on type safety and modern C++ style.☆13Jun 3, 2019Updated 6 years ago
- PoC script to demonstrate collection of SCCM attack paths that can be viewed in BH with OpenGraph☆24Aug 2, 2025Updated 7 months ago
- Code Integrity Violation Spotter☆17Jun 11, 2024Updated last year
- ☆15Mar 13, 2023Updated 2 years ago
- CVE-2023-21742 Poc☆14Apr 7, 2023Updated 2 years ago
- inject shellcode into remote process via message hook☆15Oct 28, 2020Updated 5 years ago