nqntmqmqmb / pePolymorpher
A tool implementing process hollowing making your PE polymorphic
☆14Updated 4 years ago
Alternatives and similar repositories for pePolymorpher:
Users that are interested in pePolymorpher are comparing it to the libraries listed below
- Fud Runpe Av Evasion / All Av Bypass☆32Updated 2 years ago
- ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption☆83Updated 2 years ago
- Bypassing windows uac, however its an old approach/method but its still unpatched ¯\_(ツ)_/¯☆45Updated 3 years ago
- Unhooks Bit Defender from NTDLL and KERNELBASE using a classic technique.☆54Updated last year
- Unhook DLL via cleaning the DLL 's .text section☆9Updated 3 years ago
- Next gen process injection technique☆45Updated 4 years ago
- A string obfuscator for .NET apps, built to evade static string analysis.☆102Updated 2 years ago
- Halos Gate-based NTAPI Unhooker☆51Updated 2 years ago
- Extracting Syscall Stub, Modernized☆63Updated 2 years ago
- Process Hollowing demonstration & explanation☆35Updated 4 years ago
- using the gpu to hide your payload☆56Updated 2 years ago
- DLL Hollowing PoC - Remote and Self shellcode injection☆78Updated 3 years ago
- Overwrite a process's recovery callback and execute with WER☆103Updated 2 years ago
- ☆47Updated 2 years ago
- a stage1 DLL loader with sleep obfuscation☆35Updated 2 years ago
- Windows API Call Obfuscation☆99Updated 2 years ago
- Disable Windows Defender Silently (ByPass TamperProtection & ByPass Trustednstaller)☆35Updated 4 years ago
- Single stub direct and indirect syscalling with runtime SSN resolving for windows.☆133Updated 2 years ago
- Bypass UAC at any level by abusing the Task Scheduler and environment variables☆31Updated 3 years ago
- LdrLoadDll Unhooking☆129Updated 3 years ago
- Bypass UAC by abusing the Internet Explorer Add-on installer☆51Updated 3 years ago
- Code used in this post https://captmeelo.com/redteam/maldev/2022/04/21/kernelcallbacktable-injection.html☆120Updated 2 years ago
- A Bumblebee-inspired Crypter☆80Updated 2 years ago
- ☆16Updated 3 years ago
- Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping☆53Updated 2 years ago
- Load static-compiled PE from remote server.☆60Updated 3 years ago
- GetModuleHandle (via PEB) and GetProcAddress (via EAT) like☆32Updated 3 years ago
- A small shellcode loader library written in C#☆45Updated 3 years ago
- abusing Process Hacker driver to terminate other processes (BYOVD)☆82Updated last year
- A rework of CMLuaUtil AutoElevated☆24Updated 2 years ago