ivkin25 / Process-Hollowing
An implementation of the Process Hollowing technique.
☆16Updated 4 years ago
Alternatives and similar repositories for Process-Hollowing:
Users that are interested in Process-Hollowing are comparing it to the libraries listed below
- Example of hijacking system calls via function pointer tables☆32Updated 3 years ago
- ☆26Updated 3 years ago
- Bypasses for Windows kernel callbacks PatchGuard protection☆43Updated 3 years ago
- ☆26Updated 7 years ago
- (DEPRECATED) A simple anti-anti debug library for Windows☆29Updated 4 years ago
- Protected Process Light Library☆18Updated 4 years ago
- ☆24Updated 6 years ago
- With this RunPE you can easily inject your payload in any x86 or x64 program.☆13Updated 5 years ago
- ☆31Updated 4 years ago
- Bypassing kernel patch protection runtime☆20Updated 2 years ago
- UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.☆44Updated 2 years ago
- Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address☆24Updated 3 years ago
- Record & prevent file deletion in kernel mode☆42Updated 4 years ago
- Скрытие строки от отладчиков и декомпиляторов☆50Updated 5 years ago
- Shh0ya Kernel Hook Driver☆21Updated 4 years ago
- Simple header only library to change return address on current stack frame.☆23Updated 8 years ago
- An automatic tool for fixing dumped PE files☆41Updated 4 years ago
- ☆37Updated 5 years ago
- ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel drive…☆48Updated 2 years ago
- ☆59Updated 2 years ago
- win32/x64 obfuscate framework☆32Updated 5 years ago
- NO WriteProcessMemory CreateRemoteThread APIs call shellcode injection☆27Updated 4 years ago
- ☆18Updated 4 years ago
- windows kernel pagehook☆39Updated 2 years ago
- Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler☆28Updated 3 years ago
- Polymorphic Stub Creator☆32Updated 7 years ago
- direct systemcalls with a modern c++20 interface.☆42Updated 2 years ago
- Library for using direct system calls☆35Updated 2 months ago
- File system minifilter driver for Windows to block symbolic link attacks.☆51Updated 4 years ago
- APC DLL Injector with NtQueueApcThread and wake up thread support☆43Updated 7 years ago