Repository navigation

#

runpe

aaaddress1 / RunPE-In-Memory 

Run a Exe File (PE Module) in memory (like an Application Loader)

runpepackerWindowspeloaderMalwarewin32
C++
887
4 年前
itm4n / VBA-RunPE 

A VBA implementation of the RunPE technique or how to bypass application whitelisting.

runpe
VBA
803
5 年前
hasherezade / demos 

Demos of various injection techniques found in malware

Malwarecode-injectiondll-injectionrunpeprocess-hollowing
C
791
3 年前
naksyn / PythonMemoryModule 

pure-python implementation of MemoryModule technique to load dll and unmanaged exe entirely from memory

edr-evasionevasionHackingmemory-modulememorymodulePythonredteamredteam-toolsredteamingrunpe
Python
316
10 个月前
siriusdeveloper / sirius-crypter 

Telegram: @siriusdeveloper

Malwareaes-encryptioncryptercrypter-defendercrypter-fudobfuscationprotectorrunpexor-crypter
C#
294
2 年前
hasherezade / chimera_pe 

ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports payload-side

pe-injectorrunpe
C
222
2 年前
TheNewAttacker64 / Theattacker-Crypter 

Tool to evade Antivirus With Different Techniques

crypterfudobfuscationundetectedbypass-antivirusrunpeShellfud-crypter
C#
177
2 年前
adamhlt / Process-Hollowing 

Process Hollowing in C++ (x86 / x64) - Process PE image replacement

C++processwinapirunpe
C++
145
2 年前
DosX-dev / UPX-Patcher 

Make "upx -d" unpacking impossible!

packerpatcher安全upxobfuscatorprotectoreasy-to-useexecutablepatchWindowsmodmutationrunpeunpackingunpack
Visual Basic .NET
141
1 年前
NYAN-x-CAT / CSharp-RunPE 

Hide malware behind a legit process C#

processrunpe
C#
118
5 年前
TalosSec / Cronos-Crypter 

Cronos Crypter is an simple example of crypter created for educational purposes.

crypterC#HackingobfuscationrunpepackerencryptionWindows
C#
98
7 个月前
XaFF-XaFF / ZwProcessHollowing 

ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption

hacking-toolprocess-hollowingrunpeWindowsx64
C++
84
2 年前
itaymigdal / PichichiH0ll0wer 

Nim process hollowing loader

loaderpe-loaderpenetration-testingpenetration-testing-toolsprocess-hollowingprocess-injectionred-teamred-team-toolssyscallspayload-generatorrunpeedr-bypassedr-evasion
Nim
57
8 个月前
abdullah2993 / go-runpe 

execute a PE in the address space of another PE aka process hollowing

runpeprocess-hollowingmalware-developmentinjectionevasion
Go
55
3 年前
Paskowsky / DreamProtectorFree 

Simple protector to show how to run a payload without dropping it using RunPE Technique

C#protectorrunpecrypter
C#
35
8 年前
TheKevinWang / HellsRunPE 

RunPE using Hell's Gate technique.

runpeprocess-hollowingloader
C
32
4 年前
BelodedAleksey / go_libpeconv 

Golang version of https://github.com/hasherezade/libpeconv

runpe
Go
27
5 年前
ghzcrlvct / Adrena 

Software Protector

CC++Cryptographyprotectionprotectorsafeguardcrypterrunpepacker
JavaScript
18
5 年前
1M50RRY / runpe-native-loader 

Loader and RunPE file executer

C++loaderrunpe
C++
17
6 年前
ivkin25 / Process-Hollowing 

An implementation of the Process Hollowing technique.

process-hollowingrunpeprocess-injection
C++
16
4 年前