bgarciaoliveira / InjectHook
A lightweight C++ library designed for function interception within injected DLLs, providing a streamlined approach to modifying application behavior at runtime. Ideal for educational purposes, debugging, and dynamic software analysis.
☆32Updated 11 months ago
Related projects: ⓘ
- A utility that can be used to launch an executable with a DLL injected☆19Updated 10 months ago
- A mechanism that trampoline hooks functions in x86/x64 systems.☆19Updated 10 months ago
- Demonstration of Early Bird APC Injection - MITRE ID T1055.004☆30Updated 10 months ago
- Windows AppLocker Driver (appid.sys) LPE☆30Updated last month
- DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable☆56Updated 9 months ago
- 「🧊」Ring 3 Rootkit for Windows 10☆53Updated 6 months ago
- ☆57Updated this week
- Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver☆51Updated 11 months ago
- powershell script i wrote that can suspend an arbitrary process (with limits)☆19Updated last year
- Parent Process ID Spoofing, coded in CGo.☆21Updated 2 months ago
- "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…☆20Updated this week
- a simple implementation of Proxy-DLL-Loads in Rust☆18Updated 7 months ago
- PowerShell script to generate ShellCode in various formats☆22Updated 2 weeks ago
- API hooking and code injection made easy!☆31Updated last year
- A remote unauthenticated DOS POC exploit that targets the authentication implementation of Havoc.☆31Updated 10 months ago
- ☆33Updated last year
- ☆55Updated this week
- Classic Process Injection with Memory Evasion Techniques implemantation☆64Updated 10 months ago
- ECC Public Key Cryptography☆33Updated 10 months ago
- This repo for Windows x32-x64 Kernel/Driver/User Mode Exploitation writeups and exploits☆22Updated 4 months ago
- A direct improvement to remote TLS Injection.☆15Updated 3 months ago
- havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets☆22Updated last month
- (EDR) Dll Unhooking = kernel32.dll, kernelbase.dll, ntdll.dll, user32.dll, apphelp.dll, msvcrt.dll.☆15Updated last month
- 🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python☆36Updated 6 months ago
- The Frida-Jit-unPacker aims at helping researchers and analysts understand the behavior of packed malicious .NET samples.☆52Updated 5 months ago
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆31Updated last year
- This script is designed to exploit a heap buffer overflow vulnerability in a socks5 proxy server.☆22Updated 6 months ago
- Firefox webInjector capable of injecting codes into webpages using a mitmproxy.☆39Updated last year
- A simple rpc2socks alternative in pure Go.☆23Updated 2 months ago
- Just another Process Injection using Process Hollowing technique.☆16Updated last year