Hollow Process / Dynamic Forking / RunPE injection technique implemented in Python
☆54Jun 18, 2021Updated 4 years ago
Alternatives and similar repositories for HollowProcess
Users that are interested in HollowProcess are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Windows Privilege Escalation☆10Dec 27, 2014Updated 11 years ago
- ☆20Aug 12, 2014Updated 11 years ago
- ☆14Sep 22, 2019Updated 6 years ago
- PE Infector/Cryptor source code☆16Apr 30, 2017Updated 8 years ago
- ☆92Apr 17, 2021Updated 4 years ago
- CVE-2017-4878 Samples - http://blog.talosintelligence.com/2018/02/group-123-goes-wild.html☆18Feb 5, 2018Updated 8 years ago
- Miscellaneous IDA scripts and projects☆15Apr 14, 2021Updated 4 years ago
- Proof of Concept code for CVE-2020-0728☆47Feb 12, 2020Updated 6 years ago
- Process Hollowing Detection on a live system☆13Nov 11, 2017Updated 8 years ago
- Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.☆17Sep 29, 2018Updated 7 years ago
- HTTP/HTTPS/DNS inspector (windows driver)☆27Feb 20, 2019Updated 7 years ago
- Fud Runpe Av Evasion / All Av Bypass☆31Feb 24, 2023Updated 3 years ago
- 对windows-api内容进行自动审查和过滤监控☆15May 30, 2017Updated 8 years ago
- A tool for scanning registery key permissions. Find where non-admins can create symbolic links.☆45Oct 30, 2019Updated 6 years ago
- Win32 API Hook偵測☆10Oct 1, 2017Updated 8 years ago
- Windows CIFS/SMB packet generation and SMB networking library☆12Aug 25, 2020Updated 5 years ago
- ☆25Jan 12, 2023Updated 3 years ago
- A Windows Remote Administration Tool in Visual Basic with UNC paths☆23Apr 19, 2019Updated 6 years ago
- ☆13Jun 1, 2021Updated 4 years ago
- Package antideb - basic anti-debugging and anti-reverse engineering protection for your application. Performs basic detection functions s…☆11Mar 2, 2021Updated 5 years ago
- POC of code that downloads and executes shellcode in memory.☆80May 25, 2014Updated 11 years ago
- Packed Malware Analyzer (PACKMAN)☆12Jan 31, 2016Updated 10 years ago
- Thanks to @d35ha☆13Aug 16, 2021Updated 4 years ago
- .NET instrumentation framework☆72Jan 16, 2018Updated 8 years ago
- A DLL Injector written in Python with no dependencies.☆23Sep 12, 2023Updated 2 years ago
- This tool allows you to stealthily inject a DLL into a process.☆14Jul 11, 2015Updated 10 years ago
- Simple Process Hollowing in C#☆68Oct 23, 2017Updated 8 years ago
- leaking net-ntlm with webdav☆26Feb 23, 2021Updated 5 years ago
- IDPS & SandBox & AntiVirus STEALTH KILLER. MorphAES is the world's first polymorphic shellcode engine, with metamorphic properties and ca…☆327Jun 25, 2022Updated 3 years ago
- CVE-2019-0708 - BlueKeep (RDP)☆40Jun 14, 2020Updated 5 years ago
- Asynchronous named pipe module for PowerShell☆21May 30, 2016Updated 9 years ago
- DLL Injection tool to unlock guest VMs☆239Nov 14, 2012Updated 13 years ago
- RDP Credential Provider☆12Oct 29, 2025Updated 4 months ago
- A simple parser(library) which extracts shimcache data from windows.☆15May 20, 2019Updated 6 years ago
- Persistent through COM Hijacking☆22Jan 15, 2019Updated 7 years ago
- ☆135Dec 15, 2019Updated 6 years ago
- execute a PE in the address space of another PE aka process hollowing☆60Dec 2, 2021Updated 4 years ago
- Windows log and threat hunting with powershell☆16Dec 11, 2020Updated 5 years ago
- An attempt at Process Doppelgänging☆183Dec 21, 2017Updated 8 years ago