d35ha / PEReflectiveInjection
Remote PE reflective injection with a simple reflective loader
☆28Updated 5 years ago
Related projects: ⓘ
- Execute an arbitrary command within the context of another process☆19Updated 5 years ago
- A kernel mode Windows rootkit in development.☆49Updated 2 years ago
- Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.☆15Updated 5 years ago
- ☆12Updated 3 years ago
- An example of PE hollowing injection technique☆23Updated 5 years ago
- ☆21Updated this week
- ☆15Updated 3 years ago
- Example for PagedOut!☆24Updated 4 years ago
- Code injection via ZwCreateSection, ZwUnmapViewOfSection. C++ example☆17Updated 2 years ago
- ☆31Updated 4 years ago
- ☆14Updated this week
- ☆19Updated this week
- Resources from my journey into Windows binary exploitation☆22Updated 5 years ago
- ☆27Updated this week
- Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler☆26Updated 3 years ago
- ☆40Updated this week
- Using Thread Description To Hide Shellcodes☆13Updated 2 years ago
- ☆19Updated this week
- ☆20Updated 3 years ago
- ☆26Updated 2 years ago
- Dump mapped PE files from memory to the disk☆17Updated 5 years ago
- ☆10Updated 4 years ago
- ☆15Updated this week
- A PoC tool for exploiting leaked process and thread handles☆30Updated 7 months ago
- Subtract one PE file from another!☆19Updated 2 years ago
- Anti-Analysis technique, trick the debugger by Hiding events from it.☆18Updated 3 years ago
- automates exploits using ROP chains, using ntdll-scraper☆16Updated 2 years ago
- Self-Loading Registration Free COM Functions☆11Updated 4 years ago
- C++ implementation of DOUBLEPULSAR usermode shellcode. Yet another Reflective DLL loader.☆28Updated 2 years ago