Alternatives and similar repositories for runpe:

Users that are interested in runpe are comparing it to the libraries listed below

• joren485 / HollowProcess
  Hollow Process / Dynamic Forking / RunPE injection technique implemented in Python
  ☆53Updated 3 years ago
• nyx0 / Alina
  Alina Spark - Point of Sales Trojan
  ☆48Updated 10 years ago
• NateBrune / Simple-XTEA-Crypter
  Simple runtime crypter in C++.
  ☆44Updated 10 years ago
• wekillpeople / bypassav-dynimp
  Bypass antivirus with dynamic import. Hide the api(s) used.
  ☆26Updated 9 years ago
• iGh0st / Crypters
  Various Crypter Project
  ☆51Updated 11 years ago
• codecrack3 / Shortcut-Downloader
  Shortcut Downloader
  ☆11Updated 8 years ago
• aeshes / exe_crypter
  ☆13Updated 8 years ago
• creaktive / inPEct
  inPEct means "infect", applicable to PE ("Portable Executable") format. It is an executable binder, thus, it's able to join two .exe file…
  ☆21Updated 14 years ago
• NextSecurity / Gozi-MBR-rootkit
  Gozi-MBR-rootkit Bootkit Modified
  ☆68Updated 8 years ago
• bytecode77 / slui-file-handler-hijack-privilege-escalation
  Slui File Handler Hijack UAC Bypass Local Privilege Escalation
  ☆92Updated 3 years ago
• nyx0 / Dexter
  Dexter v2 - Point of Sales Trojan
  ☆26Updated 10 years ago
• m0n0ph1 / Basic-File-Crypter
  Process Hollowing techniques as used in many file Crypters (C/C++)
  ☆84Updated 4 years ago
• FilipeBorges1993 / Booh-Botnet
  HTTP BOTNET
  ☆8Updated 2 years ago
• kkar / VBS-Obfuscator-in-Python
  VBScript obfuscation to allow PenTesters bypass countermeasures.
  ☆122Updated 2 years ago
• ambray / ProcessHollowing
  Simple Process Hollowing in C#
  ☆69Updated 7 years ago
• Nervous / GreenKit-Rootkit
  GreenKit is an userland rootkit hiding its own files and mining bitcoins on compromised computers. Do /NOT/ download or use this rootkit …
  ☆44Updated 7 years ago
• WithSecureLabs / doublepulsar-usermode-injector
  A utility to use the usermode shellcode from the DOUBLEPULSAR payload to reflectively load an arbitrary DLL into another process, for use…
  ☆118Updated 7 years ago
• 0x9090 / RunPE
  RunPE Code Injection
  ☆18Updated 4 years ago
• secretsquirrel / recomposer
  Randomly changes Win32/64 PE Files for 'safer' uploading to malware and sandbox sites.
  ☆131Updated 11 years ago
• t3rabyt3-zz / Gozi
  Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.
  ☆64Updated 7 years ago
• bdunlap9 / WordMacro-Download-Execute-Payload
  Word Macro Virus that has a Powershell based Download & Execute Payload
  ☆22Updated 8 years ago
• nyx0 / PowerLoader
  Power Loader botnet
  ☆39Updated 10 years ago
• wekillpeople / browser-dumpwd
  Dump browser passwords(chrome, firefox) with sqlite3 lib.
  ☆87Updated 8 years ago
• aainz / AiJson
  ☆12Updated 8 years ago
• apt69 / RibeyeSpecial
  medium-rare
  ☆28Updated 5 years ago
• 3gstudent / Code-Execution-and-Process-Injection
  Powershell to CodeExecution and ProcessInjection
  ☆64Updated 7 years ago
• mandreko / DotNetAVBypass
  This project uses the .NET framework to bypass Antivirus solutions.
  ☆29Updated 12 years ago
• MalwareTech / UACElevator
  Passive UAC elevation using dll infection
  ☆73Updated 10 years ago
• hlldz / APC-PPID
  Adds a user-mode asynchronous procedure call (APC) object to the APC queue of the specified thread and spoof the Parent Process.
  ☆157Updated 5 years ago
• bhassani / Alina
  Alina POS Source Code + Rootkit
  ☆23Updated 9 years ago