A manual PE mapping implementation, aka reflective loader
☆22Feb 28, 2026Updated 2 months ago
Alternatives and similar repositories for BulletTrain
Users that are interested in BulletTrain are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- manually mapping the dll image into the process, dividing the image into parts of 0x1000 bytes and writing them in random order, which co…☆14Jan 10, 2023Updated 3 years ago
- Reversed WintaPix Malware Source code | That targets countries in the Middle East and abuse KeServiceDescriptorTable(SSDT), persistence a…☆22Jul 6, 2024Updated last year
- An Unsigned Driver Mapper for Windows 10 22H2 -> Windows 11 23H2 that uses PdFwKrnl to exploit the Read/Write IOCTL Calls to disable DSE …☆28Aug 2, 2024Updated last year
- Discover similar functions structures in binaries using graph theory.☆26Oct 14, 2021Updated 4 years ago
- Class Informer updated for 32bit targets in 64bit IDA 8.2+/9.0/9.1☆62Apr 13, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Loading Fileless Remote PE from URI to memory with argument passing and ETW patching and NTDLL unhooking and No New Thread technique☆75Sep 29, 2022Updated 3 years ago
- Resources from Trend Micro Research teams☆26Nov 14, 2024Updated last year
- A PlayStation 5 ELF injector☆34Dec 15, 2025Updated 4 months ago
- ☆20Jul 23, 2023Updated 2 years ago
- Code with Windows Hacker☆12Oct 14, 2022Updated 3 years ago
- A PlayStation 4 Kernel Debugger [WIP]☆41Apr 22, 2026Updated last week
- "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…☆28Sep 18, 2024Updated last year
- The Frida-Jit-unPacker aims at helping researchers and analysts understand the behavior of packed malicious .NET samples.☆66Apr 15, 2024Updated 2 years ago
- A Tiktok Repost Remover☆11Aug 1, 2024Updated last year
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Shellcodev is a tool designed to help and automate the process of shellcode creation.☆114Oct 11, 2023Updated 2 years ago
- EDR PoC WIP LLC☆10Feb 9, 2024Updated 2 years ago
- a header-only library to dynamically resolve modules and exports while also being able to call them directly☆23Dec 20, 2023Updated 2 years ago
- A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using Instrumentation…☆39Sep 23, 2023Updated 2 years ago
- Simple and sane compression wrapper library.☆19Oct 28, 2022Updated 3 years ago
- Just a git repo for the sleepmask detection rule i found in https://codex-7.gitbook.io/codexs-terminal-window/blue-team/detecting-cobalt-…☆16Jun 4, 2025Updated 11 months ago
- Allocation-free move-only alternative to std::function for C++17☆13Feb 6, 2021Updated 5 years ago
- Library containing Anti-RE and Anti-Debug methods.☆121Apr 30, 2025Updated last year
- A Dynamic Study Vmprotect 1.x-1.9X Unpacking Toolkit, Recovery OEP, FIX PE, IAT and bypass protection with custom Loader and interceptor …☆37Jul 14, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆169Aug 23, 2024Updated last year
- leek☆15Jul 3, 2024Updated last year
- Load and unload a DLL into an remote process without using WriteProcessMemory ;)☆16Jun 8, 2014Updated 11 years ago
- The best theme for x64dbg!☆88Aug 5, 2022Updated 3 years ago
- My personal shellcode loader☆31Mar 9, 2023Updated 3 years ago
- Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2☆13Jul 15, 2023Updated 2 years ago
- All my POC related to malware development☆15Feb 19, 2026Updated 2 months ago
- ☆39Oct 12, 2022Updated 3 years ago
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆160Mar 16, 2026Updated last month
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Stalker represents a sophisticated tool utilized in the realm of Open Source Intelligence (OSINT). Its primary function is to facilitate …☆15Nov 26, 2023Updated 2 years ago
- AIDA64DRIVER Elevation of Privilege Vulnerability☆17Oct 25, 2024Updated last year
- https://docs.qwqdanchun.com/☆28May 24, 2021Updated 4 years ago
- This exploit is utilising AddressOfEntryPoint of process which is RX and using WriteProcessMemory internal magic to change the permission…☆18Oct 31, 2024Updated last year
- Bypass windows eventlogs & Sysmon☆20Aug 24, 2021Updated 4 years ago
- Virtual Tagger Plugin is a Cutter plugin that significantly improves handling and analysis of vtables and virtual functions☆16Mar 23, 2023Updated 3 years ago
- Bypass Userland EDR hooks by Loading Reflective Ntdll in memory from a remote server based on Windows ReleaseID to avoid opening a handle…☆16Jan 7, 2023Updated 3 years ago