cocomelonc/2022-01-14-malware-injection-13 external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

cocomelonc/2022-01-14-malware-injection-13

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/cocomelonc/2022-01-14-malware-injection-13)

Close

cocomelonc / 2022-01-14-malware-injection-13View on GitHubMore

• External links
• Readme badge

Code injection via ZwCreateSection, ZwUnmapViewOfSection. C++ example

☆17Jan 17, 2022Updated 4 years ago

Alternatives and similar repositories for 2022-01-14-malware-injection-13

Users that are interested in 2022-01-14-malware-injection-13 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• cocomelonc / 2022-05-02-malware-pers-3

  View on GitHub
  Malware persistence via COM DLL hijacking. C++ implementation example
  ☆13May 2, 2022Updated 3 years ago
• cocomelonc / 2022-06-27-malware-injection-20

  View on GitHub
  Run shellcode via EnumDesktopsA. C++ implementation
  ☆13Jun 27, 2022Updated 3 years ago
• cocomelonc / 2022-04-13-malware-injection-19

  View on GitHub
  Classic DLL injection. Download dll from url and inject. Simple C++ implementation
  ☆10Apr 16, 2022Updated 4 years ago
• cocomelonc / 2022-01-24-malware-injection-15

  View on GitHub
  Process injection via KernelCallbackTable
  ☆14Jan 28, 2022Updated 4 years ago
• cocomelonc / 2022-04-20-malware-pers-1

  View on GitHub
  Malware development: persistence - part 1: startup folder registry keys. C++ implementation
  ☆12Apr 21, 2022Updated 3 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• cocomelonc / 2023-06-07-syscalls-1

  View on GitHub
  Malware dev tricks. Syscalls part 1. Simple C example
  ☆10Jun 8, 2023Updated 2 years ago
• cocomelonc / 2022-04-02-malware-injection-18

  View on GitHub
  Find kernel32 base and API addresses. Simple C++ implementation
  ☆24Apr 7, 2022Updated 4 years ago
• cocomelonc / offzone-2024-malware-persistence-workshop

  View on GitHub
  OFFZONE 2024 Malware Persistence workshop
  ☆22Dec 18, 2024Updated last year
• cocomelonc / 2022-07-21-malware-tricks-22

  View on GitHub
  Run payload like a Lazarus Group (UuidFromStringA). C++ implementation
  ☆21Jul 24, 2022Updated 3 years ago
• cocomelonc / aiya_mmd_book

  View on GitHub
  Attack and introduction (info stealer), start your adventure in MMD
  ☆19Sep 14, 2025Updated 7 months ago
• wyyqyl / HookIAT

  View on GitHub
  ☆15Sep 24, 2012Updated 13 years ago
• cocomelonc / 2022-06-05-malware-av-evasion-7

  View on GitHub
  Malware AV evasion via disable Windows Defender (Registry). C++
  ☆36Jun 5, 2022Updated 3 years ago
• CyberSecurityExploitDevelopment / SMBLibrary

  View on GitHub
  Windows CIFS/SMB packet generation and SMB networking library
  ☆12Aug 25, 2020Updated 5 years ago
• dilibili / Hook_KiUserExceptionDispatcher

  View on GitHub
  R3劫持所有异常
  ☆15Jan 4, 2021Updated 5 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• Vicshann / PEProtectDrv

  View on GitHub
  Some crazy PE executables protection kernel driver
  ☆20May 2, 2020Updated 5 years ago
• CyberSecurityExploitDevelopment / WindowsEternalBlue

  View on GitHub
  Fully Functional MS17-10 EternalBlue Exploit Written in C++ on windows for windows
  ☆13Sep 6, 2020Updated 5 years ago
• Amoystyle / LLVM-VS

  View on GitHub
  Using Microsoft Visual Studio 2019 Building A LLVM Out-Source-Tree Pass
  ☆17Apr 30, 2020Updated 5 years ago
• libyal / libvsmbr

  View on GitHub
  Library and tools to access the Master Boot Record (MBR) volume system format
  ☆14Dec 21, 2025Updated 3 months ago
• NotokDay / NTProcessInjector

  View on GitHub
  Process injection via native Windows APIs (NTAPIs)
  ☆15Jan 16, 2024Updated 2 years ago
• Eran-YT / KM-to-UM-Injector

  View on GitHub
  Kernel mode to user mode injector
  ☆11Mar 31, 2020Updated 6 years ago
• loneicewolf / flame-sourcecode

  View on GitHub
  UPDATED 2022 Flame malware sourcecode available !! Forked. I will later provide my sample of Flame, Duqu and Gauss.
  ☆19Mar 4, 2024Updated 2 years ago
• Narumiii / phantommap

  View on GitHub
  Phantom DLL Hollowing method implemented in modmap
  ☆18Jun 9, 2021Updated 4 years ago
• jaenudin86 / CryptoJoker

  View on GitHub
  CryptoJoker is an open source ransomware written in C# created for education purposes only.
  ☆22Jul 8, 2017Updated 8 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• nelfo / VMP-Hwid-Decoder

  View on GitHub
  Decoder for VMProtect hwids
  ☆18Aug 1, 2022Updated 3 years ago
• cocomelonc / OffensiveCpp

  View on GitHub
  This repo contains C/C++ snippets that can be handy in specific offensive scenarios.
  ☆13May 31, 2024Updated last year
• EvaStanAccount / MalwareDev

  View on GitHub
  ☆16Sep 23, 2021Updated 4 years ago
• h4xu3lyn / NTLib

  View on GitHub
  Headers for linking your software with ntdll.dll
  ☆15Nov 4, 2020Updated 5 years ago
• oldboy21 / CGPL

  View on GitHub
  Yet, Another Packer/Loader
  ☆25Feb 26, 2023Updated 3 years ago
• cocomelonc / peekaboo

  View on GitHub
  It bridges my research with a functional tool. I want to provide a safe, open-source framework for hackers to test evasion and for defend…
  ☆287Apr 5, 2026Updated 2 weeks ago
• kaxap / rmq

  View on GitHub
  A wrapper with auto-reconnect for Go RabbitMQ client http://github.com/streadway/amqp
  ☆12Dec 20, 2018Updated 7 years ago
• busy10 / NoScreen

  View on GitHub
  Hiding the window from screenshots using the function win32kfull::ChangeWindowTreeProtection
  ☆11Jan 3, 2022Updated 4 years ago
• agalaframework / agala_telegram

  View on GitHub
  Telegram provider for Agala framework
  ☆16Apr 12, 2023Updated 3 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• ckg101 / Lode-Runner

  View on GitHub
  Recreation of Lode Runner The Legend Returns
  ☆14Feb 13, 2020Updated 6 years ago
• kkent030315 / kernel_callbacks

  View on GitHub
  Bypasses for Windows kernel callbacks PatchGuard protection
  ☆44Aug 15, 2021Updated 4 years ago
• capt-meelo / KernelCallbackTable-Injection

  View on GitHub
  Code used in this post https://captmeelo.com/redteam/maldev/2022/04/21/kernelcallbacktable-injection.html
  ☆145Apr 21, 2022Updated 3 years ago
• Ingan121 / DWMSwitch

  View on GitHub
  Easy DWM switcher without Winlogon suspension
  ☆18Jan 30, 2024Updated 2 years ago
• AxDSan / Venturi77CallHijacker

  View on GitHub
  KoiVM,EazVM,AgileVM Patcher Por "Team Venturi77"
  ☆18Aug 16, 2019Updated 6 years ago
• iHackerJi / MiniWfp

  View on GitHub
  基于WFP的小型网络过滤驱动，拦截百度的DNS，感谢公司前辈们的思路与指导。
  ☆14Aug 19, 2021Updated 4 years ago
• kyREcon / IsKernelDebuggerPresent

  View on GitHub
  Detects if a Kernel mode debugger is active by reading the value of KUSER_SHARED_DATA.KdDebuggerEnabled. It is a high level and portable …
  ☆25Sep 18, 2017Updated 8 years ago