Repository navigation

#

process-hollowing

jxy-s / herpaderping 

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

ExploitWindows安全process-herpaderpingvulnerabilityexploitationexploit-developmentexploit-frameworkwindows-defenderantivirusantivirus-evasionprocess-hollowing
C++
1133
2 年前
hasherezade / demos 

Demos of various injection techniques found in malware

Malwarecode-injectiondll-injectionrunpeprocess-hollowing
C
791
3 年前
Hagrid29 / PELoader 

PE loader with various shellcode injection techniques

pe-loaderprocess-hollowingprocess-injectiondllMalwarepayloadpe-injector
C++
405
3 年前
hasherezade / module_overloading 

A more stealthy variant of "DLL hollowing"

pe-injectorprocess-hollowing
C
347
1 年前
ivan-sincek / invoker 

Penetration testing utility and antivirus assessment tool.

ethical-hackingoffensive-securitypenetration-testingred-team-engagement安全WindowsC++dll-injectionprocess-hollowingaccess-tokenMalwarereverse-tcptask-scheduler
C++
315
2 年前
snovvcrash / DInjector 

Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL

shellcode-injectionshellcode-loaderdinvokeprocess-hollowing
C#
178
3 年前
MahmoudZohdy / Process-Injection-Techniques 

Various Process Injection Techniques

injectiondll-injectionshellcode-injectionprocess-hollowing
C++
148
3 年前
TunnelGRE / Percino 

Evasive Golang Loader

process-hollowingshellcode-loaderbypass-antivirusbypass-edr
Go
131
9 个月前
ZeroMemoryEx / Shellcode-Injector 

simple shellcode injector

process-injectionshellcode-injectorprocess-hollowingred-team
C++
115
3 年前
XaFF-XaFF / ZwProcessHollowing 

ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption

hacking-toolprocess-hollowingrunpeWindowsx64
C++
84
2 年前
ProcessusT / UnhookingDLL 

This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hollowing

bypassedretwprocess-hollowingShell
C++
69
1 年前
bediger4000 / userlandexec 

userland exec for Linux x86_64

elfx86-64process-hollowing
C
67
3 年前
itaymigdal / PichichiH0ll0wer 

Nim process hollowing loader

loaderpe-loaderpenetration-testingpenetration-testing-toolsprocess-hollowingprocess-injectionred-teamred-team-toolssyscallspayload-generatorrunpeedr-bypassedr-evasion
Nim
57
9 个月前
abdullah2993 / go-runpe 

execute a PE in the address space of another PE aka process hollowing

runpeprocess-hollowingmalware-developmentinjectionevasion
Go
55
3 年前
Hagrid29 / herpaderply_hollowing 

Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping

code-injectionMalwarepe-injectorpe-loaderpefileprocess-hollowing
C
54
3 年前
ORCA666 / EVA 

FUD shellcode Injector

Shellinjectorfudcobalt-strikeprocess-injectioncode-injectionprocess-hollowingundetectable
C++
40
4 年前
TheKevinWang / HellsRunPE 

RunPE using Hell's Gate technique.

runpeprocess-hollowingloader
C
32
4 年前
ChrisPritchard / golang-shellcode-runner 

A shellcode runner / injector / hollower in Go, for windows

ntdllprocess-hollowingshellcode-injection
Go
26
3 年前
Logan-Elliott / HollowGhost 

Process hollowing C# shellcode runner that is FUD against Microsoft Defender as of October 7, 2023.

antivirus-evasiondefenderfudinjectionpenetration-testingprocess-hollowingred-teamrunnerShell
C#
18
2 年前
ivkin25 / Process-Hollowing 

An implementation of the Process Hollowing technique.

process-hollowingrunpeprocess-injection
C++
16
4 年前