Some ways to inject a DLL into a alive process
☆365Apr 26, 2018Updated 7 years ago
Alternatives and similar repositories for ProcessInjection
Users that are interested in ProcessInjection are comparing it to the libraries listed below
Sorting:
- 在Windows环境下的进程注入方法:远程线程注入、创建进程挂起注入、反射注入、APCInject、SetWindowHookEX注入☆670Sep 22, 2018Updated 7 years ago
- ☆34Jul 28, 2018Updated 7 years ago
- Hide codes/data in the kernel address space.☆188May 8, 2021Updated 4 years ago
- 💉 DLL/Shellcode injection techniques☆716Mar 26, 2019Updated 6 years ago
- Using Driver Global Injection dll, it can hide DLL modules☆536Jun 28, 2019Updated 6 years ago
- pseudo-code to show how to disable patchguard with win10☆294Jan 13, 2018Updated 8 years ago
- Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loadi…☆3,230Sep 3, 2022Updated 3 years ago
- Process Doppelgänging☆162Dec 19, 2017Updated 8 years ago
- SuperDllHijack:A general DLL hijack technology, don't need to manually export the same function interface of the DLL, so easy! 一种通用Dll劫持技…☆1,019Nov 10, 2021Updated 4 years ago
- 逆向火绒安全软件驱动——sysdiag☆158Jan 15, 2018Updated 8 years ago
- Helper library for x86 programs that runs under WOW64 layer on x64 versions of Microsoft Windows operating systems.☆1,001Jan 17, 2023Updated 3 years ago
- kernel-mode TDI client which can send and receive HTTP requests☆56Jun 9, 2018Updated 7 years ago
- Enumerate the DLLs/Modules using NtQueryVirtualMemory☆32Jun 11, 2015Updated 10 years ago
- 使用纯C/C++编写的ShellCode生成框架☆452May 25, 2019Updated 6 years ago
- A collection of injection via vc++ in ring3☆243Apr 3, 2017Updated 8 years ago
- win10 pgContext dynamic dump (btc version)☆110Jan 15, 2020Updated 6 years ago
- 驱动层拦截web访问源码☆30Apr 2, 2018Updated 7 years ago
- Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode☆2,503Nov 15, 2023Updated 2 years ago
- ☆174Sep 9, 2020Updated 5 years ago
- A library for loading dll module bypassing windows PE loader from memory (x86/x64)☆581Feb 8, 2026Updated 3 weeks ago
- kHypervisor is a lightweight bluepill-like nested VMM for Windows, it provides and emulating a basic function of Intel VT-x☆443Nov 29, 2021Updated 4 years ago
- ☆125May 23, 2020Updated 5 years ago
- AntiSpy is a free but powerful anti virus and rootkits toolkit.It offers you the ability with the highest privileges that can detect,anal…☆1,114Apr 22, 2021Updated 4 years ago
- Kernel Anit Anit Debug Plugins 内核反反调试插件☆479Aug 31, 2021Updated 4 years ago
- Collection Of Anti-Debugging Tricks☆100Dec 19, 2015Updated 10 years ago
- dll转shellcode工具☆104Feb 20, 2020Updated 6 years ago
- codes for my blog post: https://secrary.com/Random/InstrumentationCallback/☆183Nov 30, 2017Updated 8 years ago
- Public documents related to my talk "Bypass Windows Exploit Guard ASR" at Offensive Con 2019.☆94Feb 24, 2019Updated 7 years ago
- source code☆183May 6, 2019Updated 6 years ago
- by others☆40Jan 28, 2018Updated 8 years ago
- Hide Driver By MiProcessLoaderEntry☆294May 17, 2019Updated 6 years ago
- System call hook for Windows 10 20H1☆496Jun 26, 2021Updated 4 years ago
- Library to load a DLL from memory.☆3,102Jan 3, 2024Updated 2 years ago
- The kernel mode Standard Template Library Template☆19Feb 22, 2020Updated 6 years ago
- Hook system calls on Windows by using Kaspersky's hypervisor☆1,278Feb 14, 2026Updated 2 weeks ago
- Turn off PatchGuard in real time for win7 (7600) ~ later☆1,037Apr 21, 2022Updated 3 years ago
- pcmonitor - windows kernel driver to monitor users activity(such as keyboard input, screenshot) and send encrypted reports to mobile appl…☆118Feb 5, 2014Updated 12 years ago
- LDE64 (relocatable) source code☆103Jun 24, 2015Updated 10 years ago
- X86 version of syswhispers2 / x86 direct system call☆330Jan 28, 2021Updated 5 years ago