A flexible PE loader, loading module in memory. Most of the functions can be inline, compatible for shellcode.
☆214Oct 10, 2025Updated 5 months ago
Alternatives and similar repositories for win-MemoryModule
Users that are interested in win-MemoryModule are comparing it to the libraries listed below
Sorting:
- MemoryModule which compatible with Win32 API and support exception handling☆450Feb 11, 2025Updated last year
- InfinityHookPro Win7 -> Win11 latest☆553Feb 7, 2023Updated 3 years ago
- Under Development☆10Aug 7, 2022Updated 3 years ago
- Another wow64ext to try to be compatible with WOW64 for all architectures.☆98Jan 1, 2026Updated 2 months ago
- A very simple C++ library for download pdb, get rva of function, global variable and offset from struct.☆159Mar 26, 2024Updated last year
- 远程注入无导入函数dll,自动重定位以后内存加载dll☆50Apr 27, 2019Updated 6 years ago
- 加载内存当中的DLL文件☆83Aug 1, 2018Updated 7 years ago
- Fix VMProtect3 IAT☆308Dec 5, 2023Updated 2 years ago
- modify from memorymodule. support exception☆223Oct 22, 2020Updated 5 years ago
- sc4cpp is a shellcode framework based on C++☆94Aug 29, 2021Updated 4 years ago
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆393Jul 6, 2022Updated 3 years ago
- ☆174Mar 9, 2022Updated 4 years ago
- windows pe packing☆118Jan 17, 2023Updated 3 years ago
- Windows Anti-Rootkit Tool☆546Dec 31, 2025Updated 2 months ago
- ☆132Sep 24, 2023Updated 2 years ago
- shellcode 生成框架☆289Mar 23, 2022Updated 3 years ago
- Radical Windows ARK☆252Apr 18, 2025Updated 11 months ago
- SuperDllHijack:A general DLL hijack technology, don't need to manually export the same function interface of the DLL, so easy! 一种通用Dll劫持技…☆1,018Nov 10, 2021Updated 4 years ago
- The Kernel-Mode Winsock library, supporting TCP, UDP and Unix sockets (DGRAM and STREAM).☆290Jan 27, 2025Updated last year
- Dll memory redirection through Hook NtMapViewOfSection☆97Sep 7, 2022Updated 3 years ago
- ☆14Feb 4, 2023Updated 3 years ago
- ☆47Feb 3, 2025Updated last year
- 将shellcode注入dwm.exe以进行屏幕截取☆362Mar 22, 2022Updated 3 years ago
- The functions interception library written on pure C and NativeAPI with UserMode and KernelMode support☆764Apr 24, 2025Updated 10 months ago
- ☆144Dec 10, 2022Updated 3 years ago
- Using NtCreateFile and NtDeviceIoControlFile to realize the function of winsock(利用NtCreateFile和NtDeviceIoControlFile 实现winsock的功能)☆128Sep 9, 2022Updated 3 years ago
- a monitoring windows driver calls kernel api tools☆129Jul 5, 2024Updated last year
- ☆56Nov 21, 2022Updated 3 years ago
- Libraries (single header file) for my reverse projects.☆69Oct 10, 2025Updated 5 months ago
- A x64dbg plugin for quickly locating key functions.☆217May 1, 2024Updated last year
- Api Breakpoint GUI plugin for x64dbg☆165Jan 13, 2023Updated 3 years ago
- ☆225Feb 21, 2023Updated 3 years ago
- 不使用3环挂钩进行DWM桌面绘制☆83Dec 9, 2021Updated 4 years ago
- ☆125May 23, 2020Updated 5 years ago
- 从MmPfnData中枚举进程和页目录基址☆208Aug 18, 2023Updated 2 years ago
- 快速内存搜索算法,商用级别☆137Nov 2, 2018Updated 7 years ago
- Kernel-Mode extended version of https://github.com/microsoft/Detours☆180Jun 1, 2025Updated 9 months ago
- 一个用来做windows内核hook的框架☆188Apr 29, 2025Updated 10 months ago
- Kernel driver that .text hooks a syscall in dxgkrnl.sys which can be called from our user-mode client to send instructions like rpm/wpm a…☆213Dec 16, 2022Updated 3 years ago