MastMind / PE-infector

Related projects ⓘ

Alternatives and complementary repositories for PE-infector

• ProcessusT / UnhookingDLL
  This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hol…
  ☆67Updated 9 months ago
• EspressoCake / DLL-Exports-Extraction-BOF
  DLL Exports Extraction BOF with optional NTFS transactions.
  ☆78Updated 3 years ago
• waawaa / breakcyserver
  ☆44Updated 2 years ago
• GetRektBoy724 / SharpLoadLibrary
  An attempt to make a LoadLibrary designed for offensive operations, in C# obviously.
  ☆53Updated 2 years ago
• Mav3rick33 / ZenLdr
  Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature
  ☆95Updated last year
• rad9800 / BloatedHammer
  API Hammering with C++20
  ☆34Updated 2 years ago
• florylsk / AmsiBypass123
  ☆12Updated last year
• WKL-Sec / StackMask
  A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.
  ☆55Updated last year
• JetP1ane / Artemis
  Artemis - C++ Hell's Gate Syscall Implementation
  ☆30Updated last year
• Ap3x / COFF-Loader
  A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader
  ☆39Updated 11 months ago
• ZeroMemoryEx / Overlord
  abusing Process Hacker driver to terminate other processes (BYOVD)
  ☆79Updated last year
• RixedLabs / IDLE-Abuse
  A method to execute shellcode using RegisterWaitForInputIdle API.
  ☆51Updated last year
• AzAgarampur / byeintegrity9-uac
  ☆35Updated last year
• Orange-Cyberdefense / EDRSnowblast
  This project is an EDRSandblast fork, adding some features and custom pieces of code.
  ☆21Updated last year
• farinap5 / bitmap4shell
  A (quite) simple steganography algorithm to hide shellcodes within bitmap image.
  ☆21Updated 6 months ago
• SaadAhla / BlockNonMSModules
  Set the process mitigation policy for loading only Microsoft Modules , and block any userland 3rd party modules
  ☆42Updated last year
• Wra7h / PEResourceInject
  ☆53Updated 2 years ago
• NUL0x4C / Syscallslib
  a library that automates some clean syscalls to make it easier to implement
  ☆82Updated 2 years ago
• fin3ss3g0d / HookFinder
  Simple PoC to locate hooked functions by EDR in ntdll.dll
  ☆32Updated last year
• NUL0x4C / ManualRsrcDataFetching
  Get your data from the resource section manually, with no need for windows apis
  ☆53Updated last month
• Kara-4search / EarlyBirdInjection_CSharp
  Inject shellcode into process via "EarlyBird"
  ☆24Updated 3 years ago
• aahmad097 / Test004
  Persistence via Shell Extensions
  ☆62Updated last year
• d4rkiZ / EmbedExeLnk-
  EmbedExeLnk by x86matthew modified by d4rkiZ
  ☆29Updated last year
• GetRektBoy724 / SyscallShuffler
  Your NTDLL vaccine from modern direct syscall methods.
  ☆35Updated 2 years ago
• zimnyaa / PhaseDive
  Sleep Obfuscation
  ☆41Updated 2 years ago