infosecguerrilla / ReflectiveSOInjection
Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.
☆116Updated 8 years ago
Alternatives and similar repositories for ReflectiveSOInjection:
Users that are interested in ReflectiveSOInjection are comparing it to the libraries listed below
- Simple library to spray the Windows Kernel Pool☆107Updated 5 years ago
- Code for diskless loading of ELF Shared Library using Reflective DLL Injection☆55Updated 8 years ago
- Windows NT ioctl bruteforcer and modular fuzzer☆121Updated 6 years ago
- ☆113Updated 8 years ago
- Simple 32/64-bit PEs loader.☆136Updated 6 years ago
- elgoog/searchme challenge from 34C3 CTF / WCTF 2018: sources & exploit☆67Updated 6 years ago
- Implements the POP/MOV SS (CVE-2018-8897) vulnerability by leveraging SYSCALL to perform a local privilege escalation (LPE).☆116Updated 6 years ago
- Windows RPC Python fuzzer☆160Updated 7 years ago
- kernel pool windbg extension☆80Updated 9 years ago
- POC and exploitation of vulnerabilities☆91Updated 2 years ago
- A Fuzzer for Windows NDIS Drivers OID Handlers☆93Updated 3 years ago
- ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD☆109Updated 4 years ago
- Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster☆29Updated 4 years ago
- A gadget finder and a ROP-Chainer tool for x86 platforms☆93Updated 3 years ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆119Updated 4 years ago
- A simple tool to view important DLL Characteristics and change DEP and ASLR☆44Updated 6 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆36Updated 6 years ago
- A little WinDbg extension to help dump the state of Win32k Type Isolation structures.☆38Updated 7 years ago
- Process reimaging proof of concept code☆95Updated 5 years ago
- FLARE Kernel Shellcode Loader☆176Updated 5 years ago
- HackSys Extreme Vulnerable Driver - Windows 10 x64 StackOverflow Exploit with SMEP Bypass☆61Updated 7 years ago
- Matryoshka - stacked LKM loader☆50Updated last year
- Building optimized shellcode using GCC. Suited for learning assembly and playing with the ABI☆76Updated 6 years ago
- ☆62Updated 7 years ago
- A branch-monitor-based solution for process monitoring.☆131Updated 5 years ago
- Enhanced version of secdev's shellforge G3. More platforms and architectures supported.☆44Updated last year
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆97Updated 4 years ago
- Helper idapython code for reversing kmdf drivers☆72Updated 2 years ago
- PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls☆39Updated 9 years ago
- Static unpacker for FinSpy VM☆99Updated 3 years ago