hasherezade/dll_to_exe external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

hasherezade/dll_to_exe

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/hasherezade/dll_to_exe)

Close

hasherezade / dll_to_exeView on GitHubMore

• External links
• Readme badge

Converts a DLL into EXE

☆815Jul 23, 2023Updated 2 years ago

Alternatives and similar repositories for dll_to_exe

Users that are interested in dll_to_exe are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• hasherezade / exe_to_dll

  View on GitHub
  Converts a EXE into DLL
  ☆1,365Sep 15, 2025Updated 9 months ago
• hasherezade / pe_to_shellcode

  View on GitHub
  Converts PE into a shellcode
  ☆2,777Aug 30, 2025Updated 9 months ago
• hasherezade / pe-sieve

  View on GitHub
  Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…
  ☆3,706Jun 6, 2026Updated 3 weeks ago
• hasherezade / libpeconv

  View on GitHub
  A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl
  ☆1,366Apr 18, 2026Updated 2 months ago
• hasherezade / module_overloading

  View on GitHub
  A more stealthy variant of "DLL hollowing"
  ☆367Mar 8, 2024Updated 2 years ago
• Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• hasherezade / hollows_hunter

  View on GitHub
  Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…
  ☆2,372Jun 6, 2026Updated 3 weeks ago
• ThunderGunExpress / Reflective_Schtasks

  View on GitHub
  ☆54Aug 13, 2018Updated 7 years ago
• hasherezade / chimera_pe

  View on GitHub
  ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…
  ☆230Mar 22, 2023Updated 3 years ago
• aaaddress1 / RunPE-In-Memory

  View on GitHub
  Run a Exe File (PE Module) in memory (like an Application Loader)
  ☆945Mar 28, 2021Updated 5 years ago
• hasherezade / transacted_hollowing

  View on GitHub
  Transacted Hollowing - a PE injection technique, hybrid between ProcessHollowing and ProcessDoppelgänging
  ☆582Mar 8, 2024Updated 2 years ago
• hasherezade / mal_unpack

  View on GitHub
  Dynamic unpacker based on PE-sieve
  ☆818Apr 14, 2026Updated 2 months ago
• monoxgas / sRDI

  View on GitHub
  Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode
  ☆2,536Nov 15, 2023Updated 2 years ago
• hasherezade / process_doppelganging

  View on GitHub
  My implementation of enSilo's Process Doppelganging (PE injection technique)
  ☆650Aug 30, 2022Updated 3 years ago
• jthuraisamy / SysWhispers

  View on GitHub
  AV/EDR evasion via direct system calls.
  ☆2,018Jan 1, 2023Updated 3 years ago
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• d35ha / CallObfuscator

  View on GitHub
  Obfuscate specific windows apis with different apis
  ☆1,022Feb 21, 2021Updated 5 years ago
• hasherezade / process_ghosting

  View on GitHub
  Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted fi…
  ☆693Mar 11, 2024Updated 2 years ago
• TheWover / donut

  View on GitHub
  Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…
  ☆4,639Jul 8, 2025Updated 11 months ago
• hasherezade / demos

  View on GitHub
  Demos of various injection techniques found in malware
  ☆789Feb 15, 2022Updated 4 years ago
• outflanknl / Dumpert

  View on GitHub
  LSASS memory dumper using direct system calls and API unhooking.
  ☆1,583Jan 5, 2021Updated 5 years ago
• outflanknl / Excel4-DCOM

  View on GitHub
  PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)
  ☆326Mar 26, 2019Updated 7 years ago
• hasherezade / bearparser

  View on GitHub
  Portable Executable parsing library (from PE-bear)
  ☆656Jun 3, 2026Updated 3 weeks ago
• hasherezade / hidden_bee_tools

  View on GitHub
  Parser for a custom executable formats from Hidden Bee and Rhadamanthys malware
  ☆59Aug 6, 2025Updated 10 months ago
• 0x09AL / RdpThief

  View on GitHub
  Extracting Clear Text Passwords from mstsc.exe using API Hooking.
  ☆1,459Jul 20, 2024Updated last year
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• codewhitesec / LethalHTA

  View on GitHub
  Lateral Movement technique using DCOM and HTA
  ☆234Oct 18, 2022Updated 3 years ago
• secrary / makin

  View on GitHub
  makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]
  ☆743Mar 17, 2019Updated 7 years ago
• FuzzySecurity / Sharp-Suite

  View on GitHub
  Also known by Microsoft as Knifecoat
  ☆1,144Dec 22, 2022Updated 3 years ago
• MojtabaTajik / Robber

  View on GitHub
  Robber is open source tool for finding executables prone to DLL hijacking
  ☆797Apr 29, 2026Updated last month
• 0xbadjuju / Tokenvator

  View on GitHub
  A tool to elevate privilege with Windows Tokens
  ☆1,066Oct 6, 2023Updated 2 years ago
• phra / PEzor

  View on GitHub
  Open-Source Shellcode & PE Packer
  ☆2,111Feb 3, 2024Updated 2 years ago
• cobbr / SharpSploit

  View on GitHub
  SharpSploit is a .NET post-exploitation library written in C#
  ☆1,881Aug 12, 2021Updated 4 years ago
• p3nt4 / PowerShdll

  View on GitHub
  Run PowerShell with rundll32. Bypass software restrictions.
  ☆1,828Mar 17, 2021Updated 5 years ago
• hasherezade / tiny_tracer

  View on GitHub
  A Pin Tool for tracing API calls etc
  ☆1,667Jun 2, 2026Updated 3 weeks ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• mdsecactivebreach / SharpShooter

  View on GitHub
  Payload Generation Framework
  ☆1,984Aug 21, 2024Updated last year
• NytroRST / ShellcodeCompiler

  View on GitHub
  Shellcode Compiler
  ☆1,159Sep 1, 2024Updated last year
• ustayready / CasperStager

  View on GitHub
  PoC for persisting .NET payloads in Windows Notification Facility (WNF) state names using low-level Windows Kernel API calls.
  ☆152Jun 3, 2019Updated 7 years ago
• JLospinoso / gargoyle

  View on GitHub
  Historical Windows temporal memory-state research artifact for studying time-bound memory observations, validation limits, and defensive …
  ☆907May 15, 2026Updated last month
• b4rtik / SharpMiniDump

  View on GitHub
  Create a minidump of the LSASS process from memory
  ☆259Nov 2, 2022Updated 3 years ago
• sorasuzukidev / ethereum-bnb-mev-bot

  View on GitHub
  🔵 Ethereum and BNB (BSC) Mev bot - Arbitrage
  ☆366Mar 4, 2026Updated 3 months ago
• nettitude / SharpSocks

  View on GitHub
  Tunnellable HTTP/HTTPS socks4a proxy written in C# and deployable via PowerShell
  ☆496Mar 15, 2023Updated 3 years ago