Alternatives and similar repositories for EXE2DLL_CLR

Users that are interested in EXE2DLL_CLR are comparing it to the libraries listed below

• w1u0u1 / Dll2Shellcode
  Convert native dll to shellcode, and support exported function
  ☆22Updated 4 years ago
• uknowsec / RemoteReflectiveDLL
  ☆37Updated 4 years ago
• elddy / Windows-NTAPI-Injector
  Inject shellcode to process using Windows NTAPI for bypassing EDRs and Antiviruses
  ☆41Updated 4 years ago
• idiotc4t / RandomInjector
  This is a random process injector, and more injection techniques will be added in the future.
  ☆13Updated 4 years ago
• idiotc4t / ReflectiveBase64DLL
  This is a project to receive Base64 data and decode it in process
  ☆15Updated 5 years ago
• w1u0u1 / kt
  Kernel file/process/object tool
  ☆67Updated 3 years ago
• TeskeVirtualSystem / MS17010Test
  MS17-010 Tester
  ☆13Updated 8 years ago
• rvrsh3ll / PELoader
  Load PE via XML Attribute
  ☆31Updated 5 years ago
• PorLaCola25 / PPID-Spoofing
  POC of PPID spoofing using NtCreateUserProcess with syscalls to create a suspended process and performing process injection by overwritti…
  ☆40Updated 3 years ago
• y11en / lm_tools
  横向移动三剑客 ( Lateral movement tools)
  ☆30Updated 3 years ago
• ewilded / PPID_spoof
  An example of how to spawn a process with a spoofed parent PID (Visual C++)
  ☆27Updated 6 years ago
• iammaguire / Salient-Rootkit
  A kernel mode Windows rootkit in development.
  ☆49Updated 3 years ago
• Paulo-D2000 / ShellCodeObfuscator
  Simple shellcode obfuscator using PYTHON and C / C++
  ☆74Updated 5 years ago
• MalwareMechanic / RISCYpacker
  Process Hollowing Packer
  ☆27Updated 7 years ago
• lab52io / StealAllTokens
  This PoC uses two diferent technics for stealing the primary token from all running processes, showing that is possible to impersonate a…
  ☆55Updated 3 years ago
• cbwang505 / AppContainerBypass
  AppContainerBypass
  ☆21Updated 4 years ago
• d35ha / PE2Shellcode
  Convert PE files to a shellcode
  ☆78Updated 5 years ago
• oXis / DoublePulsarPayload
  C++ implementation of DOUBLEPULSAR usermode shellcode. Yet another Reflective DLL loader.
  ☆30Updated 3 years ago
• TimelifeCzy / HIPS-HIDS_CveMod
  Windows CVE主防(HIPS/HIDS)
  ☆55Updated 4 years ago
• kouzhudong / HidePort
  Hide Port In Windows
  ☆40Updated 8 months ago
• KIDofot / BypassDriverDetection_And_Kill360Process
  Thanks to all those who helped me.
  ☆20Updated 7 years ago
• BeneficialCode / KPPL
  Kill Protected Process Light Process (include av)
  ☆58Updated last year
• evilashz / RemoteMemorymodule
  Load the evilDLL from socket connection without touch disk
  ☆17Updated 3 years ago
• Q4n / SuperPriv
  从admin冲到TrustedInstaller
  ☆17Updated 2 years ago
• y11en / PEBFake
  PEBFake(修改PEB 伪装当前进程路径、参数等)
  ☆51Updated 4 years ago
• MahmoudZohdy / IAT-Obfuscation
  IAT-Obfuscation to make static analysis of executable harder.
  ☆43Updated 3 years ago
• sv3nbeast / ImgLoaderShellCode
  ☆35Updated 4 years ago
• fdgnneig / ShellProgram
  具备对PE文件添加区段、添加花指令、对代码段加密、修复重定位、加密IAT等功能
  ☆59Updated 5 years ago
• bopin2020 / WindowsCamp
  Windows Kernel Knowledge && Collect Resources on the wire && Nothing innovation by myself &&
  ☆56Updated 3 weeks ago
• aaaddress1 / masqueradeCmdline
  A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.
  ☆40Updated 4 years ago