infosecguerrilla / ReflectiveSOInjection
Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.
☆113Updated 8 years ago
Related projects: ⓘ
- Simple library to spray the Windows Kernel Pool☆102Updated 4 years ago
- Code for diskless loading of ELF Shared Library using Reflective DLL Injection☆53Updated 8 years ago
- Simple 32/64-bit PEs loader.☆135Updated 5 years ago
- Implements the POP/MOV SS (CVE-2018-8897) vulnerability by leveraging SYSCALL to perform a local privilege escalation (LPE).☆116Updated 6 years ago
- ☆112Updated 8 years ago
- elgoog/searchme challenge from 34C3 CTF / WCTF 2018: sources & exploit☆67Updated 6 years ago
- A Fuzzer for Windows NDIS Drivers OID Handlers☆91Updated 2 years ago
- Windows NT ioctl bruteforcer and modular fuzzer☆119Updated 5 years ago
- Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster☆29Updated 4 years ago
- Process reimaging proof of concept code☆95Updated 5 years ago
- ☆46Updated 7 years ago
- ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD☆106Updated 4 years ago
- kernel pool windbg extension☆79Updated 9 years ago
- ☆56Updated this week
- Windows RPC Python fuzzer☆154Updated 6 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆36Updated 5 years ago
- POC viruses I have created to demo some ideas☆58Updated 4 years ago
- ☆100Updated 6 years ago
- POC and exploitation of vulnerabilities☆90Updated 2 years ago
- An command-line RPC method enumerator, born out of RPCView's awesomeness☆97Updated 5 years ago
- Building optimized shellcode using GCC. Suited for learning assembly and playing with the ABI☆75Updated 6 years ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆117Updated 4 years ago
- A process overwriting its own PEB to make an illusion that it has been loaded from a different path.☆91Updated 3 years ago
- Matryoshka - stacked LKM loader☆50Updated 11 months ago
- kernel exploitation helper class☆75Updated 7 years ago
- A gadget finder and a ROP-Chainer tool for x86 platforms☆91Updated 3 years ago
- Collection of VC++ example applications to demonstrate Win10 userland heap behavior (BEA & FEA)☆84Updated 8 years ago
- Win32k Exploit by Grant Willcox