nicholasvg/RunPE-Process-Hollowing-GO external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

nicholasvg/RunPE-Process-Hollowing-GO

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/nicholasvg/RunPE-Process-Hollowing-GO)

Close

nicholasvg / RunPE-Process-Hollowing-GOView on GitHubMore

• External links
• Readme badge

Thanks to @d35ha

☆13Aug 16, 2021Updated 4 years ago

Alternatives and similar repositories for RunPE-Process-Hollowing-GO

Users that are interested in RunPE-Process-Hollowing-GO are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• clod81 / loader_process_hollow_copy_in_chunk

  View on GitHub
  About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once
  ☆13Jul 14, 2022Updated 3 years ago
• Hagrid29 / BOF-SprayAD

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses LogonUserSSPI API to perform kerberos-based password spray
  ☆47Mar 4, 2023Updated 3 years ago
• latortuga71 / GOCoffLoader

  View on GitHub
  Its a coff loader ported to go
  ☆20Oct 2, 2022Updated 3 years ago
• abdullah2993 / go-runpe

  View on GitHub
  execute a PE in the address space of another PE aka process hollowing
  ☆60Dec 2, 2021Updated 4 years ago
• timwhitez / CLR-RWX

  View on GitHub
  Load CLR to get RWX 通过加载clr在自身内存中产生rwx空间
  ☆22Sep 28, 2022Updated 3 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• timwhitez / Doge-ScreenShot

  View on GitHub
  desktop screenshot
  ☆29Apr 26, 2023Updated 3 years ago
• hack2fun / EventLogBypass

  View on GitHub
  Terminate the eventlog thread to disable the windows eventlog
  ☆21Apr 1, 2020Updated 6 years ago
• timwhitez / Doge-PX

  View on GitHub
  DPX - the Doge Packer for eXecutables
  ☆30Dec 21, 2021Updated 4 years ago
• sairson / go-Win32Code

  View on GitHub
  This is learning to write windows 32 api instance code in the golang language
  ☆43Jan 14, 2022Updated 4 years ago
• timwhitez / Doge-newSyscall

  View on GitHub
  use shellcode as asm function
  ☆23Mar 29, 2022Updated 4 years ago
• audibleblink / xordump

  View on GitHub
  ☆18Aug 15, 2021Updated 4 years ago
• timwhitez / Doge-RecycledGate

  View on GitHub
  Golang implementation of Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll;
  ☆34Mar 22, 2022Updated 4 years ago
• oXis / NimWinAPICustom

  View on GitHub
  Resolve WinAPI func. Custom GetProcAddress and GetModuleHandle written in Nim
  ☆32Jun 2, 2021Updated 4 years ago
• CryptoBreach / UnhookPoC

  View on GitHub
  A small PoC using DInvoke, dynamically mapping a DLL and executing Win32 APIs for process injection.
  ☆10Dec 16, 2021Updated 4 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• CrossC2 / autoRebind

  View on GitHub
  Automatically parse Malleable C2 profiled into CrossC2 rebinding library source code
  ☆21Feb 13, 2023Updated 3 years ago
• Octoberfest7 / EventViewerUAC_BOF

  View on GitHub
  Beacon Object File implementation of Event Viewer deserialization UAC bypass
  ☆133May 6, 2022Updated 3 years ago
• izj007 / CrackSleeve

  View on GitHub
  cs4.0 cs 4.1 beacon加解密
  ☆25Mar 29, 2021Updated 5 years ago
• timwhitez / Freeze-Common

  View on GitHub
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆14Sep 30, 2022Updated 3 years ago
• zijiei / synScan

  View on GitHub
  GoLang sys全端口扫描
  ☆13Jan 25, 2022Updated 4 years ago
• timwhitez / Doge-HeapAlloc

  View on GitHub
  ☆14Sep 2, 2021Updated 4 years ago
• timwhitez / Doge-MemX

  View on GitHub
  Golang implementation of Reflective load PE from memory
  ☆63Jan 10, 2022Updated 4 years ago
• carlospolop / sh2bin

  View on GitHub
  ☆26Jun 19, 2022Updated 3 years ago
• 1ight-2020 / GoRottenTomato

  View on GitHub
  Go实现部分Rubeus功能，可执行asktgt, asktgs, s4u, describe ticket, renew ticket, asreproast等
  ☆142May 5, 2022Updated 4 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• Ch1ngg / AggressorScript-RunDumpHash

  View on GitHub
  AggressorScript-RunDumpHash
  ☆19Oct 9, 2019Updated 6 years ago
• WBGlIl / Beacon_re

  View on GitHub
  ☆88Jun 28, 2022Updated 3 years ago
• code-scan / DirGo

  View on GitHub
  Dirfuzz by golang
  ☆15Feb 28, 2023Updated 3 years ago
• bufsnake / wappalyzer

  View on GitHub
  基于wappalyzer指纹库、chromedp框架对网站进行指纹识别
  ☆13Mar 17, 2025Updated last year
• ScriptIdiot / sw2-secinject

  View on GitHub
  Section Mapping Process Injection modified with SysWhisper2 (sw2-secinject): Cobalt Strike BOF
  ☆44Jun 23, 2022Updated 3 years ago
• evi1ox / cobalt_strike_bot

  View on GitHub
  ☆35Jul 5, 2020Updated 5 years ago
• projectdiscovery / blackrock

  View on GitHub
  blackrock cipher based on masscan
  ☆37Aug 21, 2023Updated 2 years ago
• idiotc4t / GetSystemEarlyBird

  View on GitHub
  这是一个直接取得系统权限的项目
  ☆48Jun 24, 2020Updated 5 years ago
• lukasrdarev / PySoSerial

  View on GitHub
  ☆13Jun 26, 2023Updated 2 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• dnSpyEx / NRefactory

  View on GitHub
  NRefactory - Refactoring Your C# Code
  ☆15Apr 9, 2026Updated 3 weeks ago
• ScriptIdiot / sleepmask_PatchlessHook

  View on GitHub
  Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW
  ☆86Mar 19, 2023Updated 3 years ago
• ScriptIdiot / sleepmask_ekko_cfg

  View on GitHub
  Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected process
  ☆49Mar 15, 2023Updated 3 years ago
• akkuman / go-dll-evil

  View on GitHub
  有关 dll 转发的 golang windows 恶意代码示例
  ☆82Aug 20, 2021Updated 4 years ago
• dinosn / hikvision

  View on GitHub
  Hikvision log4j PoC
  ☆65Dec 29, 2022Updated 3 years ago
• nullenc0de / discover

  View on GitHub
  Easy discovery of assets
  ☆13Jun 22, 2022Updated 3 years ago
• xpn / RpcEnum

  View on GitHub
  An command-line RPC method enumerator, born out of RPCView's awesomeness
  ☆109Jul 31, 2019Updated 6 years ago