EgeBalci / MapPELinks
PE file mapping and manipulation package.
☆36Updated 3 years ago
Alternatives and similar repositories for MapPE
Users that are interested in MapPE are comparing it to the libraries listed below
Sorting:
- Basic multi platform meterpreter loader module.☆15Updated 5 years ago
- Assembly block for hooking windows API functions.☆93Updated 6 years ago
- A better alternative to RunDLL32☆33Updated 6 years ago
- A quick tool for hiding a new process running shellcode.☆57Updated 5 years ago
- An example of PE hollowing injection technique☆24Updated 6 years ago
- Assembly block for finding and calling the windows API functions inside import address table(IAT) of the running PE file.☆77Updated 2 years ago
- An example of how to spawn a process with a spoofed parent PID (Visual C++)☆29Updated 6 years ago
- GUI Application in C# to run and disassemble shellcode☆36Updated 8 years ago
- ☆92Updated 4 years ago
- Hijack Printconfig.dll to execute shellcode☆99Updated 4 years ago
- Shellcode to load an appended Dll☆89Updated 4 years ago
- Windows PE - TLS (Thread Local Storage) Injector in C/C++☆106Updated 4 years ago
- A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.☆40Updated 4 years ago
- This is a project to receive Base64 data and decode it in process☆15Updated 5 years ago
- Windows (ShadowMove) Socket Duplication☆87Updated 5 years ago
- A kernel mode Windows rootkit in development.☆49Updated 3 years ago
- Process Hollowing Packer☆29Updated 8 years ago
- Some simple process injection techniques targeting the Windows platform☆31Updated 5 years ago
- Encrypted Shellcode Loader Generator☆22Updated 6 years ago
- Fileless persistence, attacks and anti-forensic capabilties.☆94Updated 6 years ago
- Yet another Windows DLL injector.☆38Updated 3 years ago
- A modified RunPE (process hollowing) technique avoiding the usage of SetThreadContext by appending a TLS section which calls the original…☆98Updated 6 years ago
- Use to generate DLL through Visual Studio☆20Updated 8 years ago
- ☆50Updated 5 years ago
- An example of how x64 kernel shellcode can dynamically find and use APIs☆107Updated 5 years ago
- WORK IN PROGRESS. RAT written in C++ using Win32 API☆21Updated 6 years ago
- Chrome cookie dumper☆17Updated 4 years ago
- Small tool to load shellcodes or PEs to analyze them☆83Updated 7 years ago
- Bypass UAC by abusing the Windows Defender Firewall Control Panel, environment variables, and shell protocol handlers☆18Updated 4 years ago
- Kernel file/process/object tool☆69Updated 4 years ago