Alternatives and similar repositories for Run-PE---Run-Portable-Executable-From-Memory

Users that are interested in Run-PE---Run-Portable-Executable-From-Memory are comparing it to the libraries listed below

• apriorit / SvcHostDemo
  Demo service that runs in svchost.exe
  ☆80Updated 7 years ago
• mgeeky / PE-library
  Lightweight Portable Executable parsing library and a demo peParser application.
  ☆80Updated 2 years ago
• BenjaminSoelberg / ReflectivePELoader
  Reflective PE loader for DLL injection
  ☆185Updated 8 years ago
• EgeBalci / Hook_API
  Assembly block for hooking windows API functions.
  ☆92Updated 6 years ago
• magnusstubman / dll-exports
  Collection of DLL function export forwards for DLL export function proxying
  ☆107Updated 4 months ago
• NtRaiseHardError / AntiHook
  PoC designed to evade userland-hooking anti-virus.
  ☆90Updated 6 years ago
• jackullrich / TRunPE
  A modified RunPE (process hollowing) technique avoiding the usage of SetThreadContext by appending a TLS section which calls the original…
  ☆97Updated 6 years ago
• Ice3man543 / ZeusInjector
  An Open Source Windows DLL Injector With All Known Techniques Available
  ☆89Updated 7 years ago
• polycone / pe-loader
  A Windows PE format file loader
  ☆150Updated 7 years ago
• MalwareTech / CreateDesktop
  Example application for creating multiple desktops on Windows
  ☆139Updated 7 years ago
• KooroshRZ / Evader
  Packer (actually a crypter) for antivirus evasion implemented for windows PE files (BSc-Thesis)
  ☆105Updated 5 years ago
• ytk2128 / api-monitor32
  A simple tool for detecting memory modifications to Windows API.
  ☆23Updated 11 months ago
• akuafif / hXOR-Packer
  A PE (Portable Executable) packer with Huffman Compression and Xor encryption.
  ☆66Updated 4 years ago
• jackullrich / memfuck
  A PoC designed to bypass all usermode hooks in a WoW64 environment.
  ☆150Updated 5 years ago
• UserExistsError / DllLoaderShellcode
  Shellcode to load an appended Dll
  ☆91Updated 5 years ago
• idan1288 / ProcessHollowing32-64
  Process Hollowing for 32 bit and 64 bit
  ☆79Updated 8 years ago
• zodiacon / sysrun
  Run any executable as SYSTEM account (no service required)
  ☆138Updated last year
• SamLarenN / PePacker
  Simple PE Packer Which Encrypts .text Section
  ☆50Updated 8 years ago
• Microwave89 / createuserprocess
  Three Tiny Examples of Directly Using Vista's NtCreateUserProcess
  ☆89Updated 10 years ago
• killswitch-GUI / HotLoad-Driver
  C++
  ☆86Updated 9 years ago
• avast / pe_tools
  A cross-platform Python toolkit for parsing/writing PE files.
  ☆66Updated last year
• MalwareTech / ZombifyProcess
  Inject code into a legitimate process
  ☆146Updated 11 years ago
• kevinalmansa / DLL_Wrapper
  A program that generates code to implement a DLL Proxy.
  ☆70Updated 8 years ago
• rokups / ReflectiveLdr
  Position-idependent Windows DLL loader based on ReflectiveDLL project.
  ☆101Updated 7 years ago
• d35ha / ProcessHide
  ☆65Updated 3 years ago
• michaellandi / exportstoc
  Used to create wrappers and proxy libraries for Windows binaries.
  ☆76Updated 13 years ago
• EgeBalci / MapPE
  PE file mapping and manipulation package.
  ☆36Updated 3 years ago
• EgeBalci / IAT_API
  Assembly block for finding and calling the windows API functions inside import address table(IAT) of the running PE file.
  ☆78Updated 2 years ago
• lilkui / runasti
  Runs programs as TrustedInstaller
  ☆49Updated 6 years ago
• Neosama / Reverse-SOCKS5
  Server/Client SOCKS5 (RFC 1928) in Reverse mode on Windows
  ☆37Updated 6 years ago