sud01oo / Processinjection
Licence: mit
Some ways to inject a DLL into a alive process
Stars: ✭ 255
Programming Languages
c
50402 projects - #5 most used programming language
Labels
Projects that are alternatives of or similar to Processinjection
Extended-Toolkit
A companion toolkit for the standard toolkit.
Stars: ✭ 83 (-67.45%)
Mutual labels: dll
DLL-Injector
Inject and detour DLLs and program functions both managed and unmanaged in other programs, written (almost) purely in C#. [Not maintained].
Stars: ✭ 29 (-88.63%)
Mutual labels: dll
textureldr
open source, integrated texture pack management system for geometry dash
Stars: ✭ 30 (-88.24%)
Mutual labels: dll
Caesar
Open source cheat for Steam version of Counter-Strike 1.6.
Stars: ✭ 22 (-91.37%)
Mutual labels: dll
CSwift
C Module for Swift, Swift Script and Dynamic Library Call;Swift中直接调用C语言源程序的展示程序
Stars: ✭ 46 (-81.96%)
Mutual labels: dll
VARGEN
Сheat for CS:GO. Based on Osiris - https://github.com/danielkrupinski/Osiris
Stars: ✭ 12 (-95.29%)
Mutual labels: dll
hookwin10calc
Reverse engineered Windows 10 Calculator.exe (UWP application) hacker. 한글/漢文을 배운 윈도우 계산기 패치.
Stars: ✭ 19 (-92.55%)
Mutual labels: dll
vue-cli-plugin-dll
Vue CLI 3 plugin for Webpack DllPlugin/DllReferencePlugin
Stars: ✭ 77 (-69.8%)
Mutual labels: dll
maalik
Feature-rich Post Exploitation Framework with Network Pivoting capabilities.
Stars: ✭ 75 (-70.59%)
Mutual labels: dll
qt mysql driver
Typical symptom: QMYSQL driver not loaded -> get pre-built Qt SQL driver plug-in required to connect QSqlDatabase to MySQL / MariaDB with QSqlDatabase::addDatabase("QMYSQL"). Download qsqlmysql.dll binaries built from official Qt source code
Stars: ✭ 102 (-60%)
Mutual labels: dll
jvm-dump-proxy
A proxy DLL for Windows to dump JVM classes at JNI level
Stars: ✭ 53 (-79.22%)
Mutual labels: dll
cozinha loader
An injector focused on undetectability that automatically injects a DLL into the target process with VAC3 bypass.
Stars: ✭ 53 (-79.22%)
Mutual labels: dll
MapleEzorsia
v83 edits for creating a custom resolution client
Stars: ✭ 17 (-93.33%)
Mutual labels: dll
Spotify-Internal
Remove ads and add extra features for spotify desktop version.
Stars: ✭ 25 (-90.2%)
Mutual labels: dll
ProcessInjection
一些进程注入方法的实现及分析,分析在:看雪论坛
已完成:
-
Classic Injection
- CommonInjection
- InjectionDLL
- DLLTest
-
Shellcode Injection
- ShellcodeInjdection
x64,shellcode使用msf生成。
-
Reflection Injection
- ReflectiveDLLInjection
- ReflectiveDLL
- ReflectiveDLLPEForm
代码参考:https://github.com/stephenfewer/ReflectiveDLLInjection
为方便调试,该工程是在外部实现的对DLL的解析,其实已经与下一个项目相同。 -
MEMORY MODULE
- Memory Module
- MemroyInjectionDLL
使用了Reflection Injection的代码,对部分代码进行了修改。
参考:https://github.com/fancycode/MemoryModule -
Process Hollowing(冷注入)
- EXEPayload
- HollowingDropper
参考:https://github.com/m0n0ph1/Process-Hollowing
在原项目的基础上,重写了项目,支持x86和x64 "热"注入失败,以后再尝试。给出文章链接: -
Gargoyle(石像鬼)
- Gargoyle
参考:https://jlospinoso.github.io/security/assembly/c/cpp/developing/software/2017/03/04/gargoyle-memory-analysis-evasion.html
简介:该项目是一种对内存扫描逃避技术的PoC。只支持x86,x64下没有尝试更改。
进行中:
- Process Hollowing(热注入)
http://riscy.business/2017/11/bypassing-modern-process-hollowing-detection/
“images”文件夹是在学习过程中,会遇到的一些数据结构的可视化图片,方便查阅相关结构。
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].