edix / AlternativeCreateRemoteThread-public
Load and unload a DLL into an remote process without using WriteProcessMemory ;)
☆16Updated 10 years ago
Related projects ⓘ
Alternatives and complementary repositories for AlternativeCreateRemoteThread-public
- Polymorphic Stub Creator☆30Updated 7 years ago
- Code Injection technique written in cpp language☆31Updated 6 years ago
- Kinject - kernel dll injector, currently available in x86 version, will be updated to x64 soon.☆32Updated 9 years ago
- An ark tool's driver☆39Updated 7 years ago
- ☆27Updated 5 years ago
- ☆26Updated 7 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆19Updated 6 years ago
- Helper utility for debugging windows PE/PE+ loader.☆50Updated 9 years ago
- win32/x64 obfuscate framework☆32Updated 5 years ago
- x64 Kernel Hooks Detection☆24Updated 7 years ago
- viewing page boundaries of pages with PAGE_NOACCESS protection reveals the presence of x64dbg.☆22Updated 7 years ago
- Data and structures regarding the research done on WdFilter☆13Updated 4 years ago
- Class implementation of PowerLoader injection technique☆29Updated 7 years ago
- just an lite AntiRootkit for interesting☆23Updated 8 years ago
- PoC for detecting and dumping code injection (built and extended on UnRunPE)☆54Updated 6 years ago
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆30Updated 5 years ago
- Windows shellcode example☆11Updated 10 years ago
- Protected Process Light Library☆18Updated 4 years ago
- Brand New Code Injection for Windows https://breakingmalware.com/injection-techniques/atombombing-brand-new-code-injection-for-windows☆18Updated 8 years ago
- ☆16Updated 4 years ago
- Windows driver with usermode interface which can hide objects of file-system and registry, protect processes and etc☆15Updated 6 years ago
- Demo List cm/ps/ob/minifilter callback And Patch/Bypass it☆28Updated 6 years ago
- Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler☆26Updated 3 years ago
- A POC for Windows Extension Host hooking☆22Updated 5 years ago
- UI application that can compare PE images in memory or in raw PE file☆17Updated 10 years ago
- (DEPRECATED) A simple anti-anti debug library for Windows☆29Updated 4 years ago
- Remote memory library in C++17.☆30Updated 6 years ago
- Simple header only library to change return address on current stack frame.☆23Updated 8 years ago