Load and unload a DLL into an remote process without using WriteProcessMemory ;)
☆16Jun 8, 2014Updated 11 years ago
Alternatives and similar repositories for AlternativeCreateRemoteThread-public
Users that are interested in AlternativeCreateRemoteThread-public are comparing it to the libraries listed below
Sorting:
- hooklib is a library that is used to inject DLL libraries in the processes, the interception code and the implementation of IPC.☆22Nov 18, 2015Updated 10 years ago
- Scanning and identifying XOR encrypted PE files in PE resources☆30Jun 22, 2014Updated 11 years ago
- Examples for detection of hidden processes on windows☆35Jun 11, 2014Updated 11 years ago
- ☆13Jun 5, 2018Updated 7 years ago
- viewing page boundaries of pages with PAGE_NOACCESS protection reveals the presence of x64dbg.☆26Jan 1, 2017Updated 9 years ago
- List of awesome reverse engineering resources☆10Nov 19, 2017Updated 8 years ago
- Program to leak anti-virus behaviour and such☆14Apr 18, 2019Updated 6 years ago
- Convert native dll to shellcode, and support exported function☆25Feb 10, 2021Updated 5 years ago
- Hyper-V virtual switch packet capturing extension with libpcap / Wireshark format☆13Jun 3, 2014Updated 11 years ago
- Complete environement for network injected reversing☆21Dec 25, 2016Updated 9 years ago
- A memory engine that scans, debugs and disassembles an applications memory space.☆14Oct 29, 2017Updated 8 years ago
- Today Plugin (x64) - A Plugin For x64dbg☆13Jul 17, 2018Updated 7 years ago
- This tool parses NTDLL.DLL, extracts all the syscall numbers and helps in making direct syscalls, in order to help evasion.☆15Jun 6, 2022Updated 3 years ago
- Better version of RunDll with GUI. This program allows you to load DLLs on Windows. You can select how to load the DLL. By direct Entry P…☆240Apr 8, 2015Updated 10 years ago
- simple PE packer written in C++☆56Feb 23, 2018Updated 8 years ago
- profiling tool for analysising the games, get all the characteristic by hook d3d☆18Oct 10, 2014Updated 11 years ago
- ☆20Aug 18, 2020Updated 5 years ago
- Sends and injects pointer input between computers using the WinAPI☆33Feb 20, 2019Updated 7 years ago
- A MITM proxy server for reflective DLL injection through WinINet☆16May 1, 2018Updated 7 years ago
- An example of PE hollowing injection technique☆25Jun 28, 2019Updated 6 years ago
- 一个早期的抗启发式查杀的WIN32免杀壳☆45Jun 30, 2013Updated 12 years ago
- An attempt to reverse-engineer the protocol for Diablo III, allowing a MITM attack on the game by intercepting packets as they pass throu…☆13Jun 21, 2012Updated 13 years ago
- Debugger checks in 3 ways☆19Jan 25, 2018Updated 8 years ago
- A hypervisor hiding user-mode memory using EPT☆107Jan 28, 2018Updated 8 years ago
- An ark tool's driver☆40May 11, 2017Updated 8 years ago
- 使用SSDT HOOK 在windows上隐藏指定文件或者文件夹☆27Feb 24, 2021Updated 5 years ago
- Pintool to detect Read before Write memory access☆21Mar 20, 2013Updated 12 years ago
- PoC for detecting and dumping process hollowing code injection☆53Oct 23, 2018Updated 7 years ago
- 仿WPE拦截Socket☆18Nov 7, 2013Updated 12 years ago
- 010 Editor Template for parsing VMware Disk(vmdk) images☆16Sep 12, 2018Updated 7 years ago
- Unpack and repack boot.img,support dtb(dt.img).☆16Apr 30, 2016Updated 9 years ago
- A manual PE mapping implementation, aka reflective loader☆21Feb 28, 2026Updated 2 weeks ago
- A simple tool to help reverse engineers while dealing with obfuscated code.☆20Sep 5, 2016Updated 9 years ago
- Notes my learning steps about Windows-NT☆23May 18, 2017Updated 8 years ago
- Some interesting code☆18Jan 16, 2015Updated 11 years ago
- Infects PE files with a shellcode☆22Oct 20, 2018Updated 7 years ago
- Remote PE reflective injection with a simple reflective loader☆32Jun 28, 2019Updated 6 years ago
- Zydis Pascal Bindings☆21Nov 20, 2023Updated 2 years ago
- This project has been done with Chen as part of system security course at SBU CS.☆12Dec 14, 2014Updated 11 years ago