apriorit / ReflectiveDLLInjectionLinks
Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.
☆17Updated 8 years ago
Alternatives and similar repositories for ReflectiveDLLInjection
Users that are interested in ReflectiveDLLInjection are comparing it to the libraries listed below
Sorting:
- r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems☆28Updated 7 years ago
- Send SECURE_ERASE_UNIT and SANITIZE_DEVICE ATA command to hard disks☆50Updated 11 years ago
- Code Injection technique written in cpp language☆34Updated 8 years ago
- Windows x64 Process Scanner to detect application compatability shims☆37Updated 7 years ago
- Blocks drivers from loading by using a name collision technique. #nsacyber☆50Updated 8 years ago
- Kernel mode driver loader, injecting into the windows kernel, Rootkit. Driver injections.☆48Updated 11 years ago
- idenLib (Library Function Identification) plugin for x32dbg☆41Updated 6 years ago
- OllyCallTrace is a plugin for OllyDbg to trace the call chain of a thread.☆54Updated 14 years ago
- A small library helping to parse commandline parameters (for C/C++)☆58Updated 8 months ago
- A set of small utilities, helpers for PIN tracers☆35Updated 3 months ago
- r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems☆28Updated 7 years ago
- A sample on how to inject a DLL from a kernel driver☆61Updated 9 years ago
- This x64dbg plugin adds several commands for dumping PE header information by address.☆63Updated 8 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆22Updated 7 years ago
- Lightweight Portable Executable parsing library and a demo peParser application.☆80Updated 3 years ago
- DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10☆53Updated last year
- Class implementation of PowerLoader injection technique☆32Updated 9 years ago
- C++☆87Updated 9 years ago
- A session-0 capable dll injection utility☆76Updated 7 years ago
- A tool to help malware analysts tell that the sample is injecting code into other process.☆78Updated 10 years ago
- ☆46Updated 7 years ago
- A simple rootkit to hide a process☆47Updated 12 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆57Updated 9 years ago
- WinDbg debugger extension library providing various tools to analyse, dump and fix (restore) Microsoft Portable Executable files for both…☆84Updated last year
- ASProtect reverse engineering & analysis WinDbg extension☆23Updated 5 years ago
- CAPE monitor DLLs☆41Updated 6 years ago
- Enumerate user mode shared memory mappings on Windows.☆126Updated 4 years ago
- Exploits I've authored☆60Updated 6 years ago
- Plugin for x64dbg to generate Yara rules from function basic blocks.☆37Updated 8 years ago
- CmdDesktopSwitch is a small utility that lists all windows desktops and provides the option to switch between them. This can be used to i…☆35Updated 9 years ago