Process Hollowing Detection on a live system
☆14Nov 11, 2017Updated 8 years ago
Alternatives and similar repositories for PHDetection
Users that are interested in PHDetection are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆12Aug 28, 2017Updated 8 years ago
- Some crazy PE executables protection kernel driver☆20May 2, 2020Updated 6 years ago
- ☆30May 9, 2026Updated 2 weeks ago
- source of: https://www.unknowncheats.me/forum/grand-theft-auto-v/300630-onra2s-mini-external-cheat-billion-dollar-earnings-godmode-etc-gt…☆11Jul 22, 2019Updated 6 years ago
- receive and draw primitives with SwapBuffers hook and imgui☆12Oct 15, 2020Updated 5 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆14Mar 8, 2019Updated 7 years ago
- Protect process fsfilter driver. Windows x64☆36Apr 11, 2016Updated 10 years ago
- A quick tool for hiding a new process running shellcode.☆57Jun 10, 2020Updated 5 years ago
- ☆14Jun 27, 2017Updated 8 years ago
- Injects position-dependent code into a code cave in an executable file, and applies relocations.☆27May 12, 2023Updated 3 years ago
- ☆16Dec 16, 2021Updated 4 years ago
- Hollow Process / Dynamic Forking / RunPE injection technique implemented in Python☆53Jun 18, 2021Updated 4 years ago
- ☆16Mar 1, 2019Updated 7 years ago
- Panda - is a set of utilities used to research how PsExec encrypts its traffic.☆13Apr 20, 2021Updated 5 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Call 32bit NtDLL API directly from WoW64 Layer☆61Nov 18, 2020Updated 5 years ago
- Windows CIFS/SMB packet generation and SMB networking library☆12Aug 25, 2020Updated 5 years ago
- Writeup for the challenges in H@cktivityCon CTF 2020☆17Aug 6, 2020Updated 5 years ago
- A DLL Injector written in Python with no dependencies.☆22Sep 12, 2023Updated 2 years ago
- Bypassing EAC integrity checks by abusing a TOCTOU in Dead by Daylight.☆22Jan 9, 2021Updated 5 years ago
- DUQU MALWARE SOURCE + BINARY + More coming☆14Feb 6, 2023Updated 3 years ago
- Simple script realizado en bash, para revisión de múltiples hosts para CVE-2022-1388 (F5)☆25May 5, 2022Updated 4 years ago
- Shellcode execution via x86 inline assembly based on MSVC syntax☆17Apr 26, 2023Updated 3 years ago
- ☆15Sep 24, 2012Updated 13 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- NT reversal☆25Jul 12, 2018Updated 7 years ago
- ☆12Jul 27, 2020Updated 5 years ago
- R3劫持所有异常☆15Jan 4, 2021Updated 5 years ago
- PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls☆39Nov 20, 2015Updated 10 years ago
- Logs incoming attempts to connect to NetBIOS/SMB☆14May 15, 2017Updated 9 years ago
- CVE-2020-1337 a bypass of (PrintDemon) CVE-2020-1048’s patch☆14Aug 11, 2020Updated 5 years ago
- A tool to help malware analysts tell that the sample is injecting code into other process.☆78Aug 12, 2015Updated 10 years ago
- Extremely simple but inefficient x86-64 assembly obfuscation.☆39Mar 1, 2016Updated 10 years ago
- Mono process injector☆22Jan 26, 2019Updated 7 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- The Network project is a C++ encapsulation of WinSock2 to form a lightweight network library; The Graphics project is a C++ encapsulation…☆13Oct 31, 2017Updated 8 years ago
- CSGO Panorama UI Injection☆25Jul 24, 2018Updated 7 years ago
- ☆15Mar 30, 2022Updated 4 years ago
- Code injection via ZwCreateSection, ZwUnmapViewOfSection. C++ example☆18Jan 17, 2022Updated 4 years ago
- Pcaps for PeddleCheap and implant communication + script for interpreting and decrypting pcaps.☆17Nov 29, 2017Updated 8 years ago
- A fork from http://create.stephan-brumme.com/hash-library/.☆16Jan 29, 2026Updated 3 months ago
- ☆27Jun 3, 2020Updated 5 years ago