process-hollowing · GitHub Topics

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

Exploit Windows 安全 process-herpaderping vulnerability exploitation exploit-development exploit-framework windows-defender antivirus antivirus-evasion process-hollowing

C++ 1.14 k

2 年前

hasherezade / demos

Demos of various injection techniques found in malware

Malware code-injection dll-injection runpe process-hollowing

C 791

3 年前

Hagrid29 / PELoader

PE loader with various shellcode injection techniques

pe-loader process-hollowing process-injection dll Malware payload pe-injector

C++ 414

3 年前

hasherezade / module_overloading

A more stealthy variant of "DLL hollowing"

pe-injector process-hollowing

C 348

1 年前

ivan-sincek / invoker

Penetration testing utility and antivirus assessment tool.

ethical-hacking offensive-security penetration-testing red-team-engagement 安全 Windows C++dll-injection process-hollowing access-token Malware reverse-tcp task-scheduler

C++ 315

2 年前

snovvcrash / DInjector

Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL

shellcode-injection shellcode-loader dinvoke process-hollowing

C# 178

4 年前

MahmoudZohdy / Process-Injection-Techniques

Various Process Injection Techniques

injection dll-injection shellcode-injection process-hollowing

C++ 148

3 年前

TunnelGRE / Percino

Evasive Golang Loader

process-hollowing shellcode-loader bypass-antivirus bypass-edr

Go 131

1 年前

ZeroMemoryEx / Shellcode-Injector

simple shellcode injector

process-injection shellcode-injector process-hollowing red-team

C++ 114

3 年前

XaFF-XaFF / ZwProcessHollowing

ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption

hacking-tool process-hollowing runpe Windows x64

C++ 86

2 年前

ProcessusT / UnhookingDLL

This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hollowing

bypass edr etw process-hollowing Shell

C++ 70

1 年前

bediger4000 / userlandexec

userland exec for Linux x86_64

elf x86-64 process-hollowing

C 67

3 年前

Hagrid29 / herpaderply_hollowing

Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping

code-injection Malware pe-injector pe-loader pefile process-hollowing

C 56

3 年前

itaymigdal / PichichiH0ll0wer

Nim process hollowing loader

loader pe-loader penetration-testing penetration-testing-tools process-hollowing process-injection red-team red-team-tools syscalls payload-generator runpe edr-bypass edr-evasion

Nim 56

10 个月前

abdullah2993 / go-runpe

execute a PE in the address space of another PE aka process hollowing

runpe process-hollowing malware-development injection evasion

Go 55

4 年前

ORCA666 / EVA

FUD shellcode Injector

Shell injector fud cobalt-strike process-injection code-injection process-hollowing undetectable

C++ 40

4 年前

TheKevinWang / HellsRunPE

RunPE using Hell's Gate technique.

runpe process-hollowing loader

C 32

5 年前

ChrisPritchard / golang-shellcode-runner

A shellcode runner / injector / hollower in Go, for windows

ntdll process-hollowing shellcode-injection

Go 26

3 年前

Logan-Elliott / HollowGhost

Process hollowing C# shellcode runner that is FUD against Microsoft Defender as of October 7, 2023.

antivirus-evasion defender fud injection penetration-testing process-hollowing red-team runner Shell

C# 19

2 年前

ivkin25 / Process-Hollowing

An implementation of the Process Hollowing technique.

process-hollowing runpe process-injection

C++ 16

5 年前