windpiaoxue/sc4cpp

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/windpiaoxue/sc4cpp)

windpiaoxue / sc4cpp

sc4cpp is a shellcode framework based on C++

☆94

Alternatives and similar repositories for sc4cpp

Users that are interested in sc4cpp are comparing it to the libraries listed below

Sorting:

bb107 / RtlWow64
View on GitHub
c++ implementation of windows heavens gate
☆71Feb 12, 2021Updated 5 years ago
A-Normal-User / Pretend_HideVirtualMemory
View on GitHub
利用物理内存映射，实现虚拟内存的伪隐藏
☆86Sep 15, 2022Updated 3 years ago
A-Normal-User / NtSocket_NtClient_NtServer
View on GitHub
Using NtCreateFile and NtDeviceIoControlFile to realize the function of winsock（利用NtCreateFile和NtDeviceIoControlFile 实现winsock的功能）
☆128Sep 9, 2022Updated 3 years ago
lainswork / shellcode-factory
View on GitHub
shellcode 生成框架
☆289Mar 23, 2022Updated 3 years ago
iammaguire / Salient-Rootkit
View on GitHub
A kernel mode Windows rootkit in development.
☆49Dec 31, 2021Updated 4 years ago
Oxygen1a1 / DrvMon
View on GitHub
a monitoring windows driver calls kernel api tools
☆129Jul 5, 2024Updated last year
jnastarot / cleancall
View on GitHub
Library for using direct system calls
☆35Jan 30, 2025Updated last year
cs1ime / DICHook
View on GitHub
Hook NtDeviceIoControlFile with PatchGuard
☆107May 10, 2022Updated 3 years ago
passthehashbrowns / hiding-your-syscalls
View on GitHub
Some source code to demonstrate avoiding certain direct syscall detections by locating and JMPing to a legitimate syscall instruction wit…
☆218Feb 20, 2023Updated 3 years ago
huoji120 / Etw-Syscall
View on GitHub
https://key08.com/index.php/2021/10/19/1375.html
☆71May 11, 2022Updated 3 years ago
aaaddress1 / wow64Jit
View on GitHub
Call 32bit NtDLL API directly from WoW64 Layer
☆62Nov 18, 2020Updated 5 years ago
hasherezade / pin_n_sieve
View on GitHub
An experimental dynamic malware unpacker based on Intel Pin and PE-sieve
☆63Aug 21, 2024Updated last year
y11en / babysc
View on GitHub
自用的shellcode生成框架
☆33Jul 5, 2023Updated 2 years ago
DragonQuestHero / Medusa
View on GitHub
Radical Windows ARK
☆252Apr 18, 2025Updated 11 months ago
kkent030315 / PageTableInjection
View on GitHub
Code Injection, Inject malicious payload via pagetables pml4.
☆243Jul 7, 2021Updated 4 years ago
D0pam1ne705 / Direct-NtCreateUserProcess
View on GitHub
Call NtCreateUserProcess directly as normal.
☆77May 17, 2022Updated 3 years ago
TonyChen56 / ShellCodeFrame
View on GitHub
使用纯C/C++编写的ShellCode生成框架
☆452May 25, 2019Updated 6 years ago
0x25bit / darkrat
View on GitHub
DarkRat source - beware untested source and resources.
☆21Dec 7, 2019Updated 6 years ago
hasherezade / transacted_hollowing
View on GitHub
Transacted Hollowing - a PE injection technique, hybrid between ProcessHollowing and ProcessDoppelgänging
☆581Mar 8, 2024Updated 2 years ago
MiroKaku / libwsk
View on GitHub
The Kernel-Mode Winsock library, supporting TCP, UDP and Unix sockets (DGRAM and STREAM).
☆290Jan 27, 2025Updated last year
clod81 / loader_process_hollow_copy_in_chunk
View on GitHub
About C# loader that copies a chunk at the time of the shellcode in memory in a suspended process, rather that all at once
☆13Jul 14, 2022Updated 3 years ago
YuriSizuku / win-MemoryModule
View on GitHub
A flexible PE loader, loading module in memory. Most of the functions can be inline, compatible for shellcode.
☆214Oct 10, 2025Updated 5 months ago
mgeeky / UnhookMe
View on GitHub
UnhookMe is an universal Windows API resolver & unhooker addressing problem of invoking unmonitored system calls from within of your Red …
☆350Jul 3, 2022Updated 3 years ago
Sqdwr / HideDriver
View on GitHub
之前那份是7600的，每次编译搞得好麻烦。更新一个VS2017可以直接编译的。
☆154Jun 5, 2019Updated 6 years ago
thiagomayllart / DarkMelkor
View on GitHub
Modified Version of Melkor @FuzzySecurity capable of creating disposable AppDomains in injected processes.
☆28Sep 8, 2021Updated 4 years ago
FiYHer / InfinityHookPro
View on GitHub
InfinityHookPro Win7 -> Win11 latest
☆553Feb 7, 2023Updated 3 years ago
Cc28256 / CcRemote
View on GitHub
这是一个基于gh0st远程控制的项目，使自己更深入了解远控的原理，采用VS2017，默认分支hijack还在修改不能执行，master分支的项目可以正常的运行的，你可以切换到该分支查看可以执行的代码
☆525Oct 14, 2020Updated 5 years ago
addrianyy / asmlib_x64
View on GitHub
x64 assembler library
☆31Jun 7, 2024Updated last year
mobdk / Upsilon
View on GitHub
Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used
☆92Aug 26, 2021Updated 4 years ago
hid3rx / Shellcode
View on GitHub
GCC生成Shellcode框架
☆18Apr 7, 2025Updated 11 months ago
mgeeky / ThreadStackSpoofer
View on GitHub
Thread Stack Spoofing - PoC for an advanced In-Memory evasion technique allowing to better hide injected shellcode's memory allocation fr…
☆1,203Jun 17, 2022Updated 3 years ago
amateurVV / AmateurVT
View on GitHub
☆27Jan 4, 2024Updated 2 years ago
NoHeart2019 / KasR3Hook
View on GitHub
使用 Intel 虚拟化特性实现应用层HOOK
☆66Sep 11, 2025Updated 6 months ago
jackullrich / ShellcodeStdio
View on GitHub
An extensible framework for easily writing compiler optimized position independent x86 / x64 shellcode for windows platforms.
☆533Jul 2, 2025Updated 8 months ago
Deputation / kernel_sockets_memory
View on GitHub
Kernel-based memory hacking framework communicating with a kernel driver via sockets.
☆97May 25, 2021Updated 4 years ago
killeven / DllToShellCode
View on GitHub
Fast Conversion Windows Dynamic Link Library To ShellCode
☆421Mar 10, 2022Updated 4 years ago
jackullrich / TRunPE
View on GitHub
A modified RunPE (process hollowing) technique avoiding the usage of SetThreadContext by appending a TLS section which calls the original…
☆97Sep 26, 2019Updated 6 years ago
ricemiller / ShellcodeInjectionObfuscation
View on GitHub
☆11Jan 29, 2021Updated 5 years ago
xuanxuan0 / TiEtwAgent
View on GitHub
PoC memory injection detection agent based on ETW, for offensive and defensive research purposes
☆301Apr 10, 2021Updated 4 years ago