Alternatives and similar repositories for SimpleProcessHollowing:

Users that are interested in SimpleProcessHollowing are comparing it to the libraries listed below

• TunnelGRE / ProcessInjection-GO
  Shellcode encryption in RC4 and process injection into explorer.exe.
  ☆37Updated last year
• kaotickj / The-Not-So-Simple-PHP-Command-Shell
  This tool is intended to be used for on target enumeration to gather and exfiltrate information and then to upload tools such as netcat o…
  ☆21Updated last year
• Cobalt-Strike / sleepmask-vs
  A simple Sleepmask BOF example
  ☆90Updated 6 months ago
• Vasco0x4 / ShadeLoader
  ShadeLoader is a shellcode loader designed to bypass most antivirus software. 壳代码, 杀毒软件, 绕过
  ☆39Updated 7 months ago
• ASkyeye / FilelessRemotePE
  Loading Fileless Remote PE from URI to memory with argument passing and ETW patching and NTDLL unhooking and No New Thread technique
  ☆62Updated 2 years ago
• Ethicalrat / Evasive-Loader
  Evasive loader to bypass static detection
  ☆57Updated last year
• sexyiam / UAC-Bypass
  UAC Bypass via CMUACUtil & PEB Enumeration, Undetected for now.
  ☆46Updated 9 months ago
• ProcessusT / SharpVenoma
  CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution
  ☆42Updated 10 months ago
• arsium / BypassUAC
  A rework of CMLuaUtil AutoElevated
  ☆24Updated 2 years ago
• Chainski / PandaLoader
  A WIP shellcode loader tool which bypasses AV/EDR, coded in C++, and equipped with a minimal console builder.
  ☆40Updated 6 months ago
• su1s / encryptor
  Windows shellcode encoding and encrypting tool
  ☆21Updated 2 years ago
• EvilBytecode / Nyx-Full-Dll-Unhook
  (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.
  ☆18Updated 7 months ago
• knight0x07 / WinRAR-Code-Execution-Vulnerability-CVE-2023-38831
  Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)
  ☆40Updated last year
• cbrnrd / maliketh
  🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python
  ☆43Updated last year
• WKL-Sec / StackMask
  A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.
  ☆62Updated last year
• SkarSys / SkarCrypter
  Crypter/Stub/Downloader for payloads and malware, bypassing all AV and achiving a score of 0/60 detections on virus total
  ☆9Updated 10 months ago
• XiaomingX / cve-2024-8069-exp-Citrix-Virtual-Apps-XEN
  Citrix Virtual Apps and Desktops (XEN) Unauthenticated RCE
  ☆16Updated 3 months ago
• qwqdanchun / ScreenShot-BOF
  ☆39Updated last year
• Intrus1ve / Runpe-ProcessHollowing
  Fud Runpe Av Evasion / All Av Bypass
  ☆32Updated 2 years ago
• arsium / PELoader
  ☆20Updated last year
• f3di006 / vxRat
  Remote administration tool with native client
  ☆33Updated last year
• eversinc33 / MalwareAdventurez
  My adventures in learning about different userland malware techniques, such as syscalls, injection, unhooking or sandbox evasion.
  ☆72Updated last year
• S12cybersecurity / NinjaInjector
  Classic Process Injection with Memory Evasion Techniques implemantation
  ☆66Updated last year
• kyxiaxiang / AV_EDR_EPP_Notes
  ☆45Updated 11 months ago
• florylsk / NtDump
  Indirect NT syscalls LSASS dumper.
  ☆41Updated last year
• m7rick / Havoc-DLLHijack
  A tool to assist DLL hijacking via the Havoc GUI
  ☆12Updated last year
• qwqdanchun / RainbowSheep
  Change hash for a signed pe
  ☆15Updated last year
• b4nbird / shellcode_entropy_less
  replace the shellcode chatacters so that reduce the entropy
  ☆16Updated last year