Data

Tools

Indexes

Applications

Experiments

Repos

An open API service providing repository metadata for many open source software ecosystems.

Topic: "pe-injection"

hasherezade/process_ghosting

Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted file

Language: C - Size: 70.3 KB - Last synced at: 4 days ago - Pushed at: about 1 year ago - Stars: 660 - Forks: 118

alphaSeclab/injection-stuff

PE Injection、DLL Injection、Process Injection、Thread Injection、Code Injection、Shellcode Injection、ELF Injection、Dylib Injection, including 400+Tools and 350+posts

Size: 75.2 KB - Last synced at: 3 months ago - Pushed at: almost 5 years ago - Stars: 524 - Forks: 144

0x546F6D/pttb_-_Pin_To_TaskBar

Small "Pin To TaskBar" exe for Command Line, tested on Windows 10 Version 20H2 (Win10 19042.964). Reverse engineering of syspin.exe "PE injection into Progman" method.

Language: C - Size: 86.9 KB - Last synced at: about 2 years ago - Pushed at: over 2 years ago - Stars: 37 - Forks: 7

ELMERIKH/PyinMemoryPE

execute PE in memory Filelessly

Language: Python - Size: 11.2 MB - Last synced at: 23 days ago - Pushed at: 3 months ago - Stars: 34 - Forks: 5

0xlane/process_ghosting

ProcessGhosting 技术的 rust 实现版本

Language: Rust - Size: 969 KB - Last synced at: about 1 month ago - Pushed at: 7 months ago - Stars: 25 - Forks: 6

DarkCoderSc/pe-code-cave-helper

PE File Code Cave Helper (Backdooring and/or Basic Section Obfuscation)

Language: Python - Size: 11.7 KB - Last synced at: about 2 months ago - Pushed at: over 4 years ago - Stars: 21 - Forks: 7

notsnakesilent/AnotherProcessHollowing

Explanation and Proof of Concept of the Process Hollowing (Windows) technique, commonly used by malware and game hackers to bypass security systems

Language: C++ - Size: 80.1 KB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 6 - Forks: 0

patopolser/Process-Hider

Hide processes from Task Manager by manually mapping itself into it and hooking NtQuerySystemInformation

Language: C++ - Size: 0 Bytes - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 1 - Forks: 0

dk0m/Plague

Simple Utility Pe Function Injector.

Language: C - Size: 40 KB - Last synced at: 10 months ago - Pushed at: 10 months ago - Stars: 1 - Forks: 0

KOLANICH-libs/processCrashWorkaround.cmake

An wrapper app calling a child subprocess, allowing to ignore its crashes. Useful for building software with buggy tools

Language: C - Size: 7.81 KB - Last synced at: about 2 years ago - Pushed at: over 4 years ago - Stars: 0 - Forks: 0

Related Topics
windows 3 process-injection 2 pe-injector 2 pefile 2 dylib-injection 1 dll-injection 1 code-injection 1 process-hollowing 1 hollowing 1 poolparty 1 malware 1 injector-games 1 injector 1 injection 1 redteaming-tools 1 redteam-tools 1 add-custom-command 1 elf-injection 1 shellcode-injection 1 thread-injection 1 process-ghosting 1 process-injector 1 rust 1 crt 1 hide 1 hook 1 manager 1 manual-map 1 no-crt 1 process 1 task 1 assembly 1 cmake 1 createremotethread 1 i386 1 ia32 1 ia32-assembly 1 payload 1 position-independent-code 1 seterrormode 1 winapi 1 windows-error-report 1 writeprocessmemory 1 x86 1 x86-64 1 backdoor 1 code-cave 1 python 1 cmd 1 pin 1 pttb 1 syspin 1 taskbar 1 evade-av 1 fileless-attack 1 fileless-malware 1 fileless-pe-injector 1 pe-file-injector 1 pe-loader 1 python-pe-injector 1