proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
在Windows环境下的进程注入方法:远程线程注入、创建进程挂起注入、反射注入、APCInject、SetWindowHookEX注入
Library for injecting a shared library into a Linux or Windows process
Simple Dll injector loading from memory. Supports PE header and entry point erasure. Written in C99.
Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers that can run malware on the victim using the Process Ghosting te...
Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module
OffensivePH - use old Process Hacker driver to bypass several user-mode access controls
DLL that hooks the NtQuerySystemInformation API and hides a process name
PoC memory injection detection agent based on ETW, for offensive and defensive research purposes
Hook WinAPI functions used by Valve Anti-Cheat. Log calls and intercept arguments & return values. DLL written in C.
Linux applications proxifier
Windows API Call Obfuscation
An Open Source Windows DLL Injector With All Known Techniques Available