hatRiot / DelayLoadInject
Code injection via delay load libraries
☆34Updated 7 years ago
Alternatives and similar repositories for DelayLoadInject:
Users that are interested in DelayLoadInject are comparing it to the libraries listed below
- Green shellcode challenge tools☆22Updated 5 years ago
- User-mode hook bypassing method☆33Updated 8 years ago
- Windows x64 Process Scanner to detect application compatability shims☆37Updated 6 years ago
- Shellcode injection using debugging APIs☆19Updated 11 years ago
- PCAUSA Rawether for Windows Local Privilege Escalation☆38Updated 8 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆19Updated 6 years ago
- Introduce you to shellcode development.☆23Updated 8 years ago
- ☆33Updated 7 years ago
- ☆45Updated 6 years ago
- AppXSvc Arbitrary File Security Descriptor Overwrite EoP☆20Updated 5 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆34Updated 6 years ago
- Kernel-mode file scanner☆18Updated 6 years ago
- A new binary injection technique, can easily go through any #CIG protected process and slip through all possible defenses without any inj…☆18Updated 7 years ago
- Execute an arbitrary command within the context of another process☆20Updated 5 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆29Updated 8 years ago
- Kernel mode windows NT API logger☆22Updated 5 years ago
- User-mode part of Zerokit platform☆20Updated 6 years ago
- Legal access: The driver and console app to demonstrate the basic memory access in kernel mode☆9Updated 7 years ago
- exploit termdd.sys(support kb4499175)☆58Updated 5 years ago
- Code Injector Using Code Caves☆14Updated 9 years ago
- A MITM proxy server for reflective DLL injection through WinINet☆15Updated 6 years ago
- Win32k Elevation of Privilege PocUpdated 5 years ago
- ☆35Updated 5 years ago
- KernelBugTest☆15Updated 6 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22Updated 7 years ago
- Slides of 44Con 2018☆21Updated 6 years ago
- User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.☆19Updated 9 years ago
- Enumerate all processes and get specified file's handle,then close it.☆11Updated 6 years ago
- reversed emet tool☆24Updated 12 years ago
- ☆16Updated 7 years ago