hasherezade / loaderineLinks
A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
☆19Updated 7 years ago
Alternatives and similar repositories for loaderine
Users that are interested in loaderine are comparing it to the libraries listed below
Sorting:
- ☆22Updated 4 years ago
- Reflective DLL Injection style process infector☆20Updated 6 years ago
- ☆45Updated 6 years ago
- ☆16Updated 5 years ago
- PoC for detecting and dumping process hollowing code injection☆51Updated 6 years ago
- Kernel mode windows NT API logger☆22Updated 5 years ago
- A ready-made template for a project based on libpeconv.☆48Updated 3 months ago
- PCAUSA Rawether for Windows Local Privilege Escalation☆38Updated 8 years ago
- Simple PE packer with RtlCompressBuffer☆21Updated 9 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆29Updated 8 years ago
- ☆36Updated 6 years ago
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆33Updated 5 years ago
- PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls☆38Updated 9 years ago
- ☆22Updated 4 years ago
- ☆34Updated 7 years ago
- ☆31Updated 4 years ago
- API hashing written in C to load APIs indirectly using CRC32 hashing☆14Updated 4 years ago
- Helper utility for debugging windows PE/PE+ loader.☆52Updated 10 years ago
- Code injection via delay load libraries☆35Updated 7 years ago
- Code Injector Using Code Caves☆14Updated 9 years ago
- PoC for detecting and dumping code injection (built and extended on UnRunPE)☆56Updated 6 years ago
- Parser for a custom executable format from Hidden Bee malware (first stage)☆43Updated 8 months ago
- Remote PE reflective injection with a simple reflective loader☆31Updated 5 years ago
- Class implementation of PowerLoader injection technique☆30Updated 8 years ago
- Dodgy reflective DLL injector PoC for 32-bit Windows☆16Updated 6 years ago
- Windows GPU rootkit PoC by Team Jellyfish☆35Updated 10 years ago
- r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems☆26Updated 6 years ago
- User-mode part of Zerokit platform☆20Updated 6 years ago
- Experimental Windows .text section Patch Detector☆21Updated 10 years ago
- HackSys Extreme Vulnerable Driver - Various Windows 7 x86 Kernel Exploits☆21Updated 7 years ago