Microwave89/createuserprocess external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Microwave89/createuserprocess

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Microwave89/createuserprocess)

Close

Microwave89 / createuserprocessView on GitHubMore

• External links
• Readme badge

Three Tiny Examples of Directly Using Vista's NtCreateUserProcess

☆89Nov 9, 2015Updated 10 years ago

Alternatives and similar repositories for createuserprocess

Users that are interested in createuserprocess are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• peta909 / NtCreateUserProcess_

  View on GitHub
  ☆13Jan 21, 2019Updated 7 years ago
• tsarpaul / WinRpcTutorial

  View on GitHub
  A working version of this tutorial: https://docs.microsoft.com/en-us/windows/desktop/rpc/tutorial
  ☆16Jun 22, 2019Updated 6 years ago
• freesoul / netstub

  View on GitHub
  Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.
  ☆17Sep 29, 2018Updated 7 years ago
• capt-meelo / NtCreateUserProcess

  View on GitHub
  Minimal PoC developed as discuss in https://captmeelo.com/redteam/maldev/2022/05/10/ntcreateuserprocess.html
  ☆144May 10, 2022Updated 3 years ago
• harryanon / r0ak

  View on GitHub
  ☆108Sep 24, 2018Updated 7 years ago
• NordVPN Threat Protection Pro™ • Ad
  Take your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
• Iamgublin / C-and-assemble

  View on GitHub
  ☆24Jul 24, 2020Updated 5 years ago
• apriorit / antirootkit-anti-splicer

  View on GitHub
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆34Mar 13, 2017Updated 9 years ago
• IgorKorkin / AllMemPro

  View on GitHub
  AllMemPro
  ☆46Jan 15, 2018Updated 8 years ago
• Mattiwatti / dumplib

  View on GitHub
  Import library generator for x86 PE files
  ☆59Apr 8, 2019Updated 7 years ago
• 3gstudent / Inject-dll-by-Process-Doppelganging

  View on GitHub
  Process Doppelgänging
  ☆162Dec 19, 2017Updated 8 years ago
• 0xcpu / exthost

  View on GitHub
  A POC for Windows Extension Host hooking
  ☆24Jul 13, 2019Updated 6 years ago
• wbenny / EtwConsumerNT

  View on GitHub
  Simple project that demonstrates how an ETW consumer can be created just by using NTDLL
  ☆147Feb 23, 2019Updated 7 years ago
• zodiacon / AccessMask

  View on GitHub
  ☆20Jul 9, 2019Updated 6 years ago
• StrikerX3 / haxmclient

  View on GitHub
  HAXM hypervisor client
  ☆18Nov 30, 2018Updated 7 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• ScorchSecurity / Toast

  View on GitHub
  User-mode hook bypassing method
  ☆33Aug 26, 2016Updated 9 years ago
• jamesboltn / R-demo

  View on GitHub
  The Network project is a C++ encapsulation of WinSock2 to form a lightweight network library; The Graphics project is a C++ encapsulation…
  ☆13Oct 31, 2017Updated 8 years ago
• yardenshafir / SymlinkCallback

  View on GitHub
  A driver that hooks C: volume using symbolic link callback to track all FS access to the volume
  ☆109Apr 24, 2020Updated 5 years ago
• aaaddress1 / sakeInject

  View on GitHub
  Windows PE - TLS (Thread Local Storage) Injector in C/C++
  ☆109Jan 3, 2021Updated 5 years ago
• martin-hughes / project_azalea

  View on GitHub
  A future hobby OS kernel
  ☆11Nov 8, 2020Updated 5 years ago
• outflanknl / TamperETW

  View on GitHub
  PoC to demonstrate how CLR ETW events can be tampered.
  ☆192Mar 26, 2020Updated 6 years ago
• dro / uac-launchinf-poc

  View on GitHub
  Windows 10 UAC bypass PoC using LaunchInfSection
  ☆35Aug 3, 2018Updated 7 years ago
• dearfuture / DriverTutorial

  View on GitHub
  ☆25Mar 3, 2019Updated 7 years ago
• d35ha / CallObfuscator

  View on GitHub
  Obfuscate specific windows apis with different apis
  ☆1,021Feb 21, 2021Updated 5 years ago
• NordVPN Special Discount Offer • Ad
  Save on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
• DownWithUp / DynamicKernelShellcode

  View on GitHub
  An example of how x64 kernel shellcode can dynamically find and use APIs
  ☆105May 14, 2020Updated 5 years ago
• 0xcpu / WinAltSyscallHandler

  View on GitHub
  Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999
  ☆242Nov 6, 2019Updated 6 years ago
• NtRaiseHardError / NINA

  View on GitHub
  NINA: No Injection, No Allocation x64 Process Injection Technique
  ☆227Jun 9, 2020Updated 5 years ago
• mai1zhi2 / SysWhispers2_x86

  View on GitHub
  X86 version of syswhispers2 / x86 direct system call
  ☆330Jan 28, 2021Updated 5 years ago
• AndreyBazhan / DbgExt

  View on GitHub
  Debugger extension for the Debugging Tools for Windows (WinDbg, KD, CDB, NTSD).
  ☆69Nov 14, 2016Updated 9 years ago
• h4xu3lyn / NTLib

  View on GitHub
  Headers for linking your software with ntdll.dll
  ☆15Nov 4, 2020Updated 5 years ago
• N4kedTurtle / LocalDllParse

  View on GitHub
  ☆53Nov 11, 2021Updated 4 years ago
• hasherezade / process_doppelganging

  View on GitHub
  My implementation of enSilo's Process Doppelganging (PE injection technique)
  ☆641Aug 30, 2022Updated 3 years ago
• passthehashbrowns / DInvokeProcessHollowing

  View on GitHub
  ☆31Aug 23, 2020Updated 5 years ago
• NordVPN Threat Protection Pro™ • Ad
  Take your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
• lxt1045 / FileLogger

  View on GitHub
  ☆12Dec 15, 2016Updated 9 years ago
• tandasat / hyperplatform_log_parser

  View on GitHub
  User-mode program parsing logs created by HyperPlatform
  ☆19Aug 15, 2016Updated 9 years ago
• d3v1l401 / Open-Xign-Crypto

  View on GitHub
  Xign Code 3 Reverse Engineered Decryption Library
  ☆11Jul 12, 2014Updated 11 years ago
• JustasMasiulis / wow64pp

  View on GitHub
  A modern c++ implementation of windows heavens gate
  ☆247Sep 19, 2020Updated 5 years ago
• mdsecactivebreach / ParallelSyscalls

  View on GitHub
  ☆170Jan 7, 2022Updated 4 years ago
• jonny-jhnson / ProcCallback

  View on GitHub
  An example of how a driver can register a handle creation callback.
  ☆16Jun 12, 2023Updated 2 years ago
• lawiet47 / STFUEDR

  View on GitHub
  Silence EDRs by removing kernel callbacks
  ☆239Dec 7, 2020Updated 5 years ago