Demos of various injection techniques found in malware
-
Updated
Feb 15, 2022 - C
Demos of various injection techniques found in malware
A VBA implementation of the RunPE technique or how to bypass application whitelisting.
pure-python implementation of MemoryModule technique to load dll and unmanaged exe entirely from memory
ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports payload-side
Tool to evade Antivirus With Different Techniques
Cronos Crypter is an simple example of crypter created for educational purposes.
ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption
execute a PE in the address space of another PE aka process hollowing
Nim process hollowing loader
Simple protector to show how to run a payload without dropping it using RunPE Technique
Mystery Legacy Repo is for advanced penetration tools
Golang version of https://github.com/hasherezade/libpeconv
Lime Crypter Obfuscator Mod
Software Protector
Make "upx -d" unpacking impossible!
Add a description, image, and links to the runpe topic page so that developers can more easily learn about it.
To associate your repository with the runpe topic, visit your repo's landing page and select "manage topics."