Lexsek / ProcessInjectionTool
Process injection tool, in order to explain how different process injection methods works and cool tricks with WINAPI.
☆21Updated 6 years ago
Alternatives and similar repositories for ProcessInjectionTool:
Users that are interested in ProcessInjectionTool are comparing it to the libraries listed below
- Windows API Hashes used in the malwares☆41Updated 9 years ago
- A repository where I share my injection implemintations☆29Updated 4 years ago
- ☆63Updated 2 years ago
- Bare template for a Kernel Mode Driver☆51Updated 5 years ago
- Dumps information about all the callback objects found in a dump file and the functions registered for them☆35Updated 4 years ago
- Weaponizing Gigabyte driver for priv escalation and bypass PPL☆68Updated 5 years ago
- ☆31Updated 4 years ago
- A small commented POC for removing API hooks placed by AV/EDR.☆33Updated 4 years ago
- A multi-staged malware that contains a kernel mode rootkit and a remote system shell.☆72Updated 3 years ago
- A simple dumper as FreshyCalls' PoC. That's what's trendy, isn't it? ¯\_(ツ)_/¯☆40Updated 4 years ago
- A PoC of a privilege escalation vulnerability in the Realtek rtkio64 Windows driver.☆16Updated 4 years ago
- PoC for DEF CON 26: Playing Malware Injection with Exploit thoughts☆23Updated 6 years ago
- A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…☆43Updated 3 years ago
- ☆35Updated 5 years ago
- Remote PE reflective injection with a simple reflective loader☆31Updated 5 years ago
- Sysmon shenanigans☆65Updated 4 years ago
- ☆78Updated 3 years ago
- Assembly block for hooking windows API functions.☆88Updated 5 years ago
- Clone running process with ZwCreateProcess☆57Updated 4 years ago
- Rite Of Passage ROP Injector☆34Updated 5 years ago
- ReaCOM has got a lot of tools to use and is related to component object model☆74Updated 5 years ago
- CSharp Writeups for HackSys Extreme Vulnerable Driver☆43Updated 3 years ago
- ☆49Updated 4 years ago
- Use NT Native Registry API to create a registry that normal user can not query.☆90Updated 7 years ago
- A simple API monitor for Windbg☆63Updated 7 years ago
- A simple PE loader.☆25Updated 2 years ago
- Simple skeleton for a CPP DLL☆26Updated 5 years ago
- Some simple process injection techniques targeting the Windows platform☆32Updated 5 years ago
- APC DLL Injector with NtQueueApcThread and wake up thread support☆43Updated 7 years ago
- (Sim)ulate (Ba)zar Loader☆29Updated 4 years ago