cocomelonc/hack-process-hacker2 external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

cocomelonc/hack-process-hacker2

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/cocomelonc/hack-process-hacker2)

Close

cocomelonc / hack-process-hacker2View on GitHubMore

• External links
• Readme badge

Proof of Concept example for abusing Process Hacker 2 (v2.39.124)

☆23Oct 30, 2024Updated last year

Alternatives and similar repositories for hack-process-hacker2

Users that are interested in hack-process-hacker2 are comparing it to the libraries listed below

• FuzzySecurity / SAFACon-Vienna

  View on GitHub
  ☆24Apr 28, 2024Updated last year
• NotokDay / NTProcessInjector

  View on GitHub
  Process injection via native Windows APIs (NTAPIs)
  ☆15Jan 16, 2024Updated 2 years ago
• REDMED-X / InjectKit

  View on GitHub
  Modified versions of the Cobalt Strike Process Injection Kit
  ☆106Jan 24, 2024Updated 2 years ago
• Offensive-Panda / .NET_PROFILER_DLL_LOADING

  View on GitHub
  .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…
  ☆46Jul 29, 2024Updated last year
• nt0xa / sonar

  View on GitHub
  Sonar is a security researcher's Swiss army knife for finding and exploiting vulnerabilities that require out-of-band interactions
  ☆21Mar 11, 2026Updated last week
• a7t0fwa7 / DllDragon

  View on GitHub
  A simple to use single-include Windows API resolver
  ☆23Jul 9, 2024Updated last year
• JoasASantos / PhantomsGate

  View on GitHub
  PhantomsGate: Advanced Shellcode Injection Technique
  ☆27Jul 15, 2024Updated last year
• Offensive-Panda / D3MPSEC

  View on GitHub
  "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…
  ☆28Sep 18, 2024Updated last year
• VirtualAlllocEx / Create_Thread_Inline_Assembly_x86

  View on GitHub
  This POC provides the possibilty to execute x86 shellcode in form of a .bin file based on x86 inline assembly
  ☆20Apr 17, 2023Updated 2 years ago
• ahron-chet / GuardBypassToolkit

  View on GitHub
  A tool that bypasses Windows Defender by manually loading DLLs, parsing EAT directly, and updating IAT with unhooked functions to run M…
  ☆21Jul 14, 2024Updated last year
• jschauma / nvd2sqlite3

  View on GitHub
  sync NIST's National Vulnerability Database into a local sqlite3 database
  ☆14Apr 27, 2013Updated 12 years ago
• carbonblack / cb-lastline-connector

  View on GitHub
  Carbon Black - LastLine Binary Detonation Connector
  ☆11May 22, 2023Updated 2 years ago
• febinrev / deepin-linux_reader_RCE-exploit

  View on GitHub
  CVE-2023-50254: PoC Exploit for Deepin-reader RCE that affects unpatched Deepin Linux Desktops. Deepin Linux's default document reader "d…
  ☆16Dec 22, 2023Updated 2 years ago
• C5Hackr / PEB-Redirection

  View on GitHub
  ☆12Oct 19, 2024Updated last year
• CodeXTF2 / cobaltstrike-sleepmask-yara

  View on GitHub
  Just a git repo for the sleepmask detection rule i found in https://codex-7.gitbook.io/codexs-terminal-window/blue-team/detecting-cobalt-…
  ☆16Jun 4, 2025Updated 9 months ago
• ZephrFish / CVE-2025-53770-Scanner

  View on GitHub
  ToolShell scanner - CVE-2025-53770 and detection information
  ☆18Dec 7, 2025Updated 3 months ago
• S12cybersecurity / Admin2Sys

  View on GitHub
  Admin2Sys it's a C++ malware to escalate privileges from Administrator account to NT AUTORITY SYSTEM
  ☆62May 1, 2023Updated 2 years ago
• cocomelonc / offzone-2024-malware-persistence-workshop

  View on GitHub
  OFFZONE 2024 Malware Persistence workshop
  ☆22Dec 18, 2024Updated last year
• sokaRepo / CoercedPotatoRDLL

  View on GitHub
  Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege
  ☆225Nov 23, 2023Updated 2 years ago
• tobor88 / CybereasonAPI

  View on GitHub
  PowerShell module containing commands to easily interact with the Cybereason API.
  ☆16Jan 4, 2026Updated 2 months ago
• SaadAhla / HadesLdr

  View on GitHub
  Shellcode Loader Implementing Indirect Dynamic Syscall , API Hashing, Fileless Shellcode retrieving using Winsock2
  ☆13Jul 15, 2023Updated 2 years ago
• SecTheBit / MalDevelopment

  View on GitHub
  All my POC related to malware development
  ☆15Feb 19, 2026Updated last month
• MindPatch / cookie-stealer

  View on GitHub
  steal cookies from website using xss
  ☆12Mar 25, 2020Updated 5 years ago
• klezVirus / AIDA64DRIVER-EoP

  View on GitHub
  AIDA64DRIVER Elevation of Privilege Vulnerability
  ☆16Oct 25, 2024Updated last year
• fin3ss3g0d / IoDllProxyLoad

  View on GitHub
  DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly
  ☆63Mar 19, 2024Updated 2 years ago
• Offensive-Panda / WPM-MAJIC-ENTRY-POINT-INJECTION

  View on GitHub
  This exploit is utilising AddressOfEntryPoint of process which is RX and using WriteProcessMemory internal magic to change the permission…
  ☆18Oct 31, 2024Updated last year
• Kharos102 / ReadWriteDriverSample

  View on GitHub
  ☆25Apr 28, 2024Updated last year
• tyranid / windows-memory-access-traps

  View on GitHub
  A few examples of how to trap virtual memory access on Windows.
  ☆42Dec 18, 2024Updated last year
• HulkOperator / AuthStager

  View on GitHub
  ☆59Oct 24, 2024Updated last year
• RATandC2 / FilelessNtdllReflection

  View on GitHub
  Bypass Userland EDR hooks by Loading Reflective Ntdll in memory from a remote server based on Windows ReleaseID to avoid opening a handle…
  ☆16Jan 7, 2023Updated 3 years ago
• azw413 / smali

  View on GitHub
  A rust crate for parsing, writing and manipulating Android smali files.
  ☆17Jan 14, 2026Updated 2 months ago
• dmcxblue / SharpBlackout

  View on GitHub
  Terminate AV/EDR leveraging BYOVD attack
  ☆103Mar 21, 2025Updated 11 months ago
• Teach2Breach / early_cascade_inj_rs

  View on GitHub
  early cascade injection PoC based on Outflanks blog post, in rust
  ☆62Nov 8, 2024Updated last year
• hackerhouse-opensource / NoFaxGiven

  View on GitHub
  Code Execution & Persistence in NETWORK SERVICE FAX Service
  ☆35Feb 2, 2026Updated last month
• Helixo32 / DetectHooks

  View on GitHub
  Detect userland hooks placed by AV/EDR
  ☆28Sep 4, 2023Updated 2 years ago
• rbmm / RtlClone

  View on GitHub
  ☆42Feb 18, 2025Updated last year
• redt1de / MaldevEDR

  View on GitHub
  EDR/AV Simulation for Malware Development
  ☆13Oct 21, 2023Updated 2 years ago
• cxiao / hashdb_bn

  View on GitHub
  Binary Ninja plugin for interacting with the OALabs HashDB service
  ☆21Nov 1, 2024Updated last year
• KiExitDispatcher / PhantomDelay

  View on GitHub
  PhantomDelay is a precise delay function that uses the Windows high resolution performance counter to pause your program for a specified …
  ☆19May 8, 2025Updated 10 months ago