EgeBalci / MapPE
PE file mapping and manipulation package.
☆36Updated 2 years ago
Alternatives and similar repositories for MapPE:
Users that are interested in MapPE are comparing it to the libraries listed below
- A quick tool for hiding a new process running shellcode.☆57Updated 4 years ago
- A kernel mode Windows rootkit in development.☆48Updated 3 years ago
- Basic multi platform meterpreter loader module.☆15Updated 4 years ago
- Enumerate the DLLs/Modules using NtQueryVirtualMemory☆32Updated 9 years ago
- Files for http://deniable.org/windows/windows-callbacks☆25Updated 4 years ago
- An example of how to spawn a process with a spoofed parent PID (Visual C++)☆27Updated 6 years ago
- Bypass UAC by abusing the Windows Defender Firewall Control Panel, environment variables, and shell protocol handlers☆18Updated 3 years ago
- Small tool to load shellcodes or PEs to analyze them☆81Updated 6 years ago
- POC of PPID spoofing using NtCreateUserProcess with syscalls to create a suspended process and performing process injection by overwritti…☆40Updated 3 years ago
- Hide Mimikatz From Process Lists☆17Updated 9 years ago
- Reverse Windows shell over TLS☆18Updated 9 years ago
- Encrypted Shellcode Loader Generator☆22Updated 6 years ago
- C++ implementation of DOUBLEPULSAR usermode shellcode. Yet another Reflective DLL loader.☆30Updated 3 years ago
- Use to generate DLL through Visual Studio☆18Updated 7 years ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆31Updated 4 years ago
- x86/x64 dll injector