Alternatives and similar repositories for runfromreg:

Users that are interested in runfromreg are comparing it to the libraries listed below

• codereversing / pe_infector
  PE Infector/Cryptor source code
  ☆19Updated 2 years ago
• codereversing / hekate
  Winsock inspection/filtering/modifying
  ☆19Updated 2 years ago
• codereversing / heapdiff
  Diffing process heaps
  ☆15Updated 2 years ago
• codereversing / process_replacement
  Run one process as another under Windows
  ☆11Updated 2 years ago
• BreakingMalwareResearch / Captain-Hook
  ☆51Updated 8 years ago
• Cn33liz / TpmInitUACAnniversaryBypass
  Bypassing User Account Control (UAC) using TpmInit.exe
  ☆42Updated 8 years ago
• codereversing / manualenum
  Enumerate process modules manually
  ☆9Updated 2 years ago
• ithurricane / SampleCode
  Some source code snippets In my development.
  ☆27Updated 2 years ago
• tandasat / cs_driver
  A sample project for using Capstone from a driver in Visual Studio 2015
  ☆33Updated 8 years ago
• hasherezade / IAT_patcher_samples
  Sample libraries to be used with IAT Patcher
  ☆33Updated 2 years ago
• Rootkitsmm-zz / MS15-061
  Exploiting MS15-061 local Privilege escalation
  ☆50Updated 9 years ago
• BreakingMalwareResearch / eleven
  Elevation by environment variable expansion
  ☆65Updated 8 years ago
• vallejocc / PoC-Inject-Data-WM_COPYDATA
  A tiny PoC to inject and execute code into explorer.exe with WM_SETTEXT+WM_COPYDATA+SetThreadContext
  ☆50Updated 6 years ago
• rwfpl / rewolf-gogogadget
  kernel exploitation helper class
  ☆76Updated 8 years ago
• codereversing / vtable_hook
  Hooking vtables
  ☆10Updated 2 years ago
• AlephNull314 / AbsoluteZero
  Anti-AV compilation
  ☆42Updated 11 years ago
• SekoiaLab / BinaryInjectionMitigation
  Two tools used during our analysis of the Microsoft binary injection mitigation implemented in Edge TH2.
  ☆53Updated 8 years ago
• Cn33liz / HSEVD-ArbitraryOverwriteLowIL
  HackSys Extreme Vulnerable Driver - ArbitraryOverwrite Exploit using GDI -> Low Integrity to System
  ☆14Updated 7 years ago
• Rootkitsmm-zz / CVEXX-XX
  Windows kernel vulnerability in win32k.sys Driver
  ☆34Updated 9 years ago
• rmadair / PE-Injector
  Inject shellcode into extra file alignment padding of a PE and change the entry point to point to the shellcode. On execution, the shellc…
  ☆21Updated 12 years ago
• dev-zzo / ntcore
  Simple standalone bundle of NT core APIs
  ☆25Updated 9 years ago
• wekillpeople / bypassav-dynimp
  Bypass antivirus with dynamic import. Hide the api(s) used.
  ☆26Updated 8 years ago
• sam-b / windows_syscalls_dumper
  A dirty IDAPython script to dump windows system call number/name pairs as JSON
  ☆37Updated 8 years ago
• codereversing / debugger
  Sample debugger for x86 and x64
  ☆4Updated 2 years ago
• Rootkitsmm-zz / WinIo-Vidix
  Exploit WinIo - Vidix and Run Shellcode in Windows Kerne ( local Privilege escalation )
  ☆28Updated 9 years ago
• Cn33liz / HSEVD-StackOverflow
  HackSys Extreme Vulnerable Driver - StackOverflow Exploit
  ☆31Updated 8 years ago
• int0 / ltmdm64_poc
  ☆28Updated 7 years ago
• cysinfo / Malpimp
  Malpimp is an advanced API tracing tool and designed to automate the reverse engineering process. In the backend it uses pydbg to hook t…
  ☆8Updated 8 years ago
• WithSecureLabs / doublepulsar-usermode-injector
  A utility to use the usermode shellcode from the DOUBLEPULSAR payload to reflectively load an arbitrary DLL into another process, for use…
  ☆117Updated 7 years ago
• k33nteam / cc-shellcoding
  ☆92Updated 10 years ago