runpe
Here are 11 public repositories matching this topic...
ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption
-
Updated
Mar 23, 2023 - C++
An implementation of the Process Hollowing technique.
-
Updated
Dec 13, 2020 - C++
RunPE dump - I wrote this to have better control over the analysis of malwares. I can stop and analysis malware when it uses some of the API's i hook and to dump the memory while it is using RunPE/PH techniques.
-
Updated
Jul 1, 2015 - C++
C++ application that uses memory and code hooks to detect packers
-
Updated
Mar 12, 2016 - C++
Implementation of the Process Hollowing technique for process injection (This is the second of three methods in the series)
-
Updated
Aug 9, 2024 - C++
Implementation of the Process Hollowing technique for process injection (This is the first of three methods in the series)
-
Updated
Aug 9, 2024 - C++
Implementation of the Process Hollowing technique for process injection (This is the third of three methods in the series)
-
Updated
Aug 9, 2024 - C++
Improve this page
Add a description, image, and links to the runpe topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the runpe topic, visit your repo's landing page and select "manage topics."