Alternatives and similar repositories for Introduction-to-Process-Hollowing:

Users that are interested in Introduction-to-Process-Hollowing are comparing it to the libraries listed below

• Octoberfest7 / Proxy_Egress_Persistence
  A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies
  ☆32Updated 2 years ago
• thefLink / Hunt-Weird-ImageLoads
  Small tool to play with IOCs caused by Imageload events
  ☆42Updated last year
• plackyhacker / AMSI-Bypass
  Another AMSI bypass - but in C++.
  ☆23Updated last year
• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆24Updated 3 years ago
• Cobalt-Strike / ZeroLogon-BOF
  ☆12Updated 4 years ago
• m8sec / EAPrimer
  C# project to Reflectively load .Net assemblies in memory
  ☆17Updated 10 months ago
• ChoiSG / GwisinMsi
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆23Updated 2 years ago
• xforcered / AdvSim.Cryptography
  Simple and sane cryptographic wrapper library.
  ☆27Updated 2 years ago
• RenderZ0n3 / Malware-Development
  ☆10Updated last year
• RedSiege / What-The-F
  This repo hosts a poc of how to execute F# code within an unmanaged process
  ☆66Updated 10 months ago
• rbmm / Hollowed-Process
  ☆26Updated 2 months ago
• AmirHoseinTangsiriNET / EventLogSilencer
  EventLogSilencer is a PowerShell script designed for disable Windows Event Logging
  ☆16Updated last year
• hyp3rlinx / NtFileSins
  Windows File Enumeration Intel Gathering Tool.
  ☆17Updated last year
• outflanknl / RedELK-workshop
  Items related to the RedELK workshop given at security conferences
  ☆29Updated last year
• ps1337 / Lastenzug
  Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level
  ☆26Updated 2 years ago
• jsecu / 7DaysofRed
  7 days of Red Teaming TTPs that your favorite tools may use to acheive a post exploitation goal
  ☆18Updated 4 years ago
• Pascal-0x90 / sideloadr
  Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).
  ☆55Updated 2 years ago
• Meckazin / HidingFromETW
  PoC for detecting and evading ETW detection of .Net Assembly.Load
  ☆20Updated 4 years ago
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• kyleavery / Multi-Stage-Mythic
  ☆25Updated 3 years ago
• Octoberfest7 / aggressor_snippets
  A collection of random small Aggressor snippets that don't warrant their own repo
  ☆23Updated 2 years ago
• G0ldenGunSec / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• djhohnstein / HookDetector
  Playing with PE's and Building Structures by Hand
  ☆22Updated 3 years ago
• lem0nSec / ASM_World
  Offensive Assembly code snippets.
  ☆12Updated last year
• jsecurity101 / LDAPMon
  ☆45Updated last year
• FuzzySecurity / Presentations
  A collection of my presentation materials.
  ☆17Updated 11 months ago
• rasta-mouse / SharpRDP
  Remote Desktop Protocol .NET Console Application for Authenticated Command Execution
  ☆12Updated 5 years ago
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆20Updated 2 years ago
• netbiosX / GhostLoader
  GhostLoader - AppDomainManager - Injection - 攻壳机动队
  ☆52Updated 4 years ago
• chvancooten / nimbuild
  A Docker container used to easily compile Nim binaries generated by my tools (NimPackt and NimPlant)
  ☆16Updated last year