s0i37 / shellcode_injectLinks
inject and run code into arbitrary process (x86 and x64)
☆14Updated 4 years ago
Alternatives and similar repositories for shellcode_inject
Users that are interested in shellcode_inject are comparing it to the libraries listed below
Sorting:
- Red Team C2 and Post Exploitation code☆34Updated 6 months ago
- JALSI - Just Another Lame Shellcode Injector☆30Updated 4 years ago
- Collection of shellcode injection and execution techniques☆18Updated 5 months ago
- Create a C++ PE which loads an XTEA-crypted .NET PE shellcode in memory.☆17Updated 7 years ago
- Windows File Enumeration Intel Gathering Tool.☆17Updated 2 years ago
- AmsiHook is a project I created to figure out a bypass to AMSI via function hooking.☆67Updated 5 years ago
- CVE-2021-34527 AddPrinterDriverEx() Privilege Escalation☆22Updated 3 years ago
- A more advanced free and open .NET obfuscator using dnlib.☆10Updated 3 years ago
- Injects shellcode into remote processes using direct syscalls☆77Updated 5 years ago
- (Sim)ulate (Ba)zar Loader☆29Updated 5 years ago
- AppXSVC Service race condition - privilege escalation☆29Updated 6 years ago
- Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used☆92Updated 4 years ago
- C code to enable ETW tracing for Dotnet Assemblies☆32Updated 3 years ago
- Tool for pivoting over SMB pipes☆18Updated 6 years ago
- Executes shellcode from a remote server and aims to evade in-memory scanners☆32Updated 6 years ago
- 64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"☆40Updated 4 years ago
- ollvm, based on llvm-clang 5.0.2, 6.0.1, 7.0.1, 8.0, 9.0, 9.0.1☆19Updated 3 years ago
- A proof-of-concept created for academic/learning purposes, demonstrating both local and remote use of VSTO "Add-In's" maliciously☆31Updated 2 years ago
- Remove API hooks from a Beacon process.☆14Updated 4 years ago
- Execute Mimikatz with different technique☆51Updated 4 years ago
- NimSkrull is an adaption from the original Skrull malware anti-copy DRM. Only for the anti-copy feature. (https://github.com/aaaddress1/S…☆13Updated 2 years ago
- This is a 64 bit VBA implementation of Christophe Tafani-Dereeper's original VBA code described in his blog @ https://blog.christophetd.f…☆21Updated 5 years ago
- C# implementation of Shellcode delivery techniques using PInvoke and DInvoke variations for API calling.☆37Updated 4 years ago
- Stealthy Loader-cum-dropper/stage-1/stager targeting Windows10☆37Updated 3 years ago
- A simple injector that uses LoadLibraryA☆18Updated 5 years ago
- One gate to all syscalls!☆23Updated 3 years ago
- EQGRP: Replicating DarkPulsar, an DLL capable of hooking Security Package Method Tables on the Heap!☆10Updated 5 years ago
- I used this to see if an EDR is running in Safe Mode☆36Updated 4 years ago
- Execute shellcode with ZwCreateSection, ZwMapViewOfSection, ZwOpenProcess, ZwMapViewOfSection and ZwCreateThreadEx☆15Updated 4 years ago
- Small POC for process ghosting☆40Updated 3 years ago