sunsided / native-dotnet-code-injection
Injection of managed code into non-managed Windows applications
☆28Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for native-dotnet-code-injection
- A C port of b33f's UrbanBishop☆37Updated 4 years ago
- C# code to run PIC using CreateThread☆16Updated 5 years ago
- Python 3 server used to control SK8RAT implant☆34Updated 3 years ago
- Proof of concept - Covert Channel using Windows Filtering Platform (C#)☆21Updated 3 years ago
- Files for generating a C# source file that allows for memory-mapping "niceness" and then executing said "niceness"☆31Updated 5 years ago
- Inject .Net payloads into other .Net assemblies on disk☆61Updated 4 years ago
- ☆26Updated 6 years ago
- PoC code from blog☆16Updated 4 years ago
- D/Invoke port of UrbanBishop☆29Updated 3 years ago
- Spoof parent process ID☆13Updated 5 years ago
- This tool parses NTDLL.DLL, extracts all the syscall numbers and helps in making direct syscalls, in order to help evasion.☆15Updated 2 years ago
- Demos of Donut used in conferences, etc. Mostly for my use, but free for others to use as a reference.☆31Updated 5 years ago
- Extract the password of the current user from flow (keylogger, config file, ..) Use SSPI to get a valid NTLM challenge/response and test …☆57Updated 5 years ago
- Ransoblin (Ransomware Bokoblin)☆17Updated 4 years ago
- This is a 64 bit VBA implementation of Christophe Tafani-Dereeper's original VBA code described in his blog @ https://blog.christophetd.f…☆19Updated 4 years ago
- Library of tools and examples for loading/bootstrapping managed code from unmanaged code in .NET☆62Updated 5 years ago
- Execute shellcode with ZwCreateSection, ZwMapViewOfSection, ZwOpenProcess, ZwMapViewOfSection and ZwCreateThreadEx☆14Updated 3 years ago
- ☆41Updated 5 years ago
- ☆33Updated 5 years ago
- CSharp Writeups for HackSys Extreme Vulnerable Driver☆43Updated 2 years ago
- NimSkrull is an adaption from the original Skrull malware anti-copy DRM. Only for the anti-copy feature. (https://github.com/aaaddress1/S…☆12Updated last year
- XOR crypt/decrypt using C#☆12Updated 4 years ago
- Code samples of .NET shellcode injections, weaponized for use via WebDav and mshta.exe.☆39Updated 4 years ago
- Another Portable Executable files analysing stuff☆18Updated 13 years ago
- A simple injector that uses LoadLibraryA☆16Updated 4 years ago
- c# reverse shell poc☆26Updated 6 years ago
- Playing with PE's and Building Structures by Hand☆22Updated 2 years ago
- RID Hijacking Proof of Concept script by Kevin Joyce☆15Updated 6 years ago
- pypykatz plugin for volatility3 framework☆31Updated 7 months ago