MahmoudZohdy/Process-Injection-Techniques external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

MahmoudZohdy/Process-Injection-Techniques

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/MahmoudZohdy/Process-Injection-Techniques)

Close

MahmoudZohdy / Process-Injection-TechniquesView on GitHubMore

• External links
• Readme badge

Various Process Injection Techniques

☆166Jun 14, 2022Updated 4 years ago

Alternatives and similar repositories for Process-Injection-Techniques

Users that are interested in Process-Injection-Techniques are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• MahmoudZohdy / APICallProxy

  View on GitHub
  Windows API Call Obfuscation
  ☆111Dec 9, 2022Updated 3 years ago
• MahmoudZohdy / DLL-Obfuscation-V2

  View on GitHub
  Load Encrypted Dll Using LoadLibraryA, Keep The Dll Encrypted on disc all the time and decrypt it only in memory.
  ☆25Sep 5, 2021Updated 4 years ago
• TheCruZ / CommonCheatingSnippets

  View on GitHub
  ☆63Dec 20, 2023Updated 2 years ago
• MahmoudZohdy / Anti-Analysis-DebuggerInjection

  View on GitHub
  Anti-Analysis technique, trick the debugger by Hiding events from it.
  ☆20Sep 6, 2021Updated 4 years ago
• paranoidninja / DotNetTracer

  View on GitHub
  C code to enable ETW tracing for Dotnet Assemblies
  ☆32Aug 12, 2022Updated 3 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• SamuelTulach / meme-rw

  View on GitHub
  Archive R/W into any protected process by changing the value of KTHREAD->PreviousMode
  ☆160Jul 31, 2022Updated 3 years ago
• boom-cr3 / NotifyRoutineHijackThread

  View on GitHub
  Hijack NotifyRoutine for a kernelmode thread
  ☆40Jun 4, 2022Updated 4 years ago
• charliewolfe / Stealthy-Kernelmode-Injector

  View on GitHub
  Manual mapper that uses PTE manipulation, Virtual Address Descriptor (VAD) manipulation, and forceful memory allocation to hide executabl…
  ☆404Jan 29, 2022Updated 4 years ago
• Nou4r / PresentInjector

  View on GitHub
  A simple present scene, kernel allocation injector.
  ☆27Jun 12, 2022Updated 4 years ago
• MahmoudZohdy / DLL-Obfuscation

  View on GitHub
  DLL-Obfuscation, Keep The Dll Encrypted on disc all the time and decrypt it only in memory.
  ☆22Sep 6, 2021Updated 4 years ago
• Sentient111 / KernelDrawing

  View on GitHub
  Drawing from kernelmode without any hooks
  ☆177Jul 7, 2022Updated 3 years ago
• lilkui / runasti

  View on GitHub
  Runs programs as TrustedInstaller
  ☆48Jul 1, 2019Updated 6 years ago
• crisprss / Extracted_WD_VDM

  View on GitHub
  Windows Defender VDM lua collections
  ☆48Oct 30, 2022Updated 3 years ago
• CooperShield / rustache_injector

  View on GitHub
  A rust based DLL injection project
  ☆31Sep 18, 2022Updated 3 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• rbmm / SDD2

  View on GitHub
  Self delete DLL (2)
  ☆14Feb 15, 2024Updated 2 years ago
• alal4465 / Practical-Reverse-Engineering-Solutions

  View on GitHub
  Some drivers I've written while solving exercises from Practical Reverse Engineering
  ☆15Jan 9, 2022Updated 4 years ago
• rad9800 / VehApiResolve

  View on GitHub
  ☆118Aug 7, 2022Updated 3 years ago
• 0mWindyBug / DataptrHooks

  View on GitHub
  ntoskrnl .data hooks for UM-KM communication
  ☆52May 26, 2024Updated 2 years ago
• SamuelTulach / EasyUefi

  View on GitHub
  Visual Studio template for GNU-EFI
  ☆17May 16, 2022Updated 4 years ago
• Sentient111 / VulnerableDriverScanner

  View on GitHub
  ☆10Jul 18, 2022Updated 3 years ago
• estimated1337 / hidden_syscall

  View on GitHub
  hidden_syscall - syscaller without using syscall instruction in code
  ☆68Jan 23, 2023Updated 3 years ago
• trickster0 / TartarusGate

  View on GitHub
  TartarusGate, Bypassing EDRs
  ☆661Jan 25, 2022Updated 4 years ago
• Sentient111 / StealingSignatures

  View on GitHub
  Stealing signatures from pe files
  ☆15Apr 1, 2025Updated last year
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• weak1337 / SkipHook

  View on GitHub
  ☆133Aug 6, 2022Updated 3 years ago
• Cracked5pider / Ekko

  View on GitHub
  Sleep Obfuscation
  ☆835Dec 3, 2023Updated 2 years ago
• decoder-it / CreateTokenExample

  View on GitHub
  ☆18Jul 4, 2019Updated 6 years ago
• TheCruZ / WSCLib

  View on GitHub
  ☆20Oct 12, 2024Updated last year
• WithSecureLabs / CallStackSpoofer

  View on GitHub
  A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)
  ☆573Apr 8, 2025Updated last year
• ekknod / Nmi

  View on GitHub
  Old way for blocking NMI interrupts
  ☆29Sep 6, 2022Updated 3 years ago
• MahmoudZohdy / IAT-Obfuscation

  View on GitHub
  IAT-Obfuscation to make static analysis of executable harder.
  ☆44Sep 6, 2021Updated 4 years ago
• xuanxuan0 / DripLoader

  View on GitHub
  Evasive shellcode loader for bypassing event-based injection detection (PoC)
  ☆830Aug 23, 2021Updated 4 years ago
• D4stiny / ThreadJect

  View on GitHub
  Manual DLL Injector using Thread Hijacking.
  ☆243Nov 24, 2017Updated 8 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• vmcall / nt-mapper

  View on GitHub
  C++17 PE manualmapper
  ☆462Oct 2, 2021Updated 4 years ago
• ekknod / acdrv

  View on GitHub
  base for testing
  ☆192Sep 28, 2024Updated last year
• hasherezade / process_ghosting

  View on GitHub
  Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted fi…
  ☆694Mar 11, 2024Updated 2 years ago
• kleiton0x00 / Proxy-DLL-Loads

  View on GitHub
  A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.
  ☆411Jan 11, 2026Updated 5 months ago
• Hagrid29 / herpaderply_hollowing

  View on GitHub
  Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping
  ☆69Oct 9, 2022Updated 3 years ago
• thefLink / C-To-Shellcode-Examples

  View on GitHub
  ☆210Mar 22, 2021Updated 5 years ago
• klezVirus / SilentMoonwalk

  View on GitHub
  PoC Implementation of a fully dynamic call stack spoofer
  ☆962Jul 20, 2024Updated last year