#Process-injection
Showing 14 of 14 repositories tagged #process-injection, ranked by stars
Detects process injection and memory manipulation used by malware. Finds RWX regions, shellcode patterns, API hooks, thread hijacking, and process hollowing. Built in Rust for speed. Includes CLI and TUI interfaces.
A dynamic unpacking tool
Process Injection Techniques with Golang
Nim process hollowing loader
Windows memory scanner for call stack spoofing detection, unbacked shellcode, injected DLLs and in-memory C2 implants.
The modern, type-safe process injection framework for Red Teams and Offensive Security in Rust.
๐ฆ RUSTVERSARY: A comprehensive repository of tools and scripts for malware development practices.
A robust, feature-rich manual map DLL injection library for Windows x64 processes. This implementation provides stealthy DLL injection with automatic cleanup capabilities, SEH support, and memory wiping for anti-detection.
PINTool to help analyzing malware that uses process injection
PoC shellcode injector using clean syscalls to bypass user-mode hooks in ntdll.dll
Expeditus is a loader that executes shellcode on a target Windows system. It combines several offensive techniques in order to attempt to do this with some level of stealth.
Collection of remote shellcode Loaders using Early Bird APC Injection, windows native api, low level utilities and stealth techniques.
Thread Hijacking malware using direct/indirect syscalls, ntdll and low level utilities, undetected by Windows Defender and BitDefender
A growing collection of open-source tools for reverse engineering, debugging, and software analysis. Includes utilities for process manipulation, binary inspection, and web analysis. Ideal for security researchers, developers, and CTF enthusiasts. Contribute and explore!