There are 11 repositories under process-injection topic.
PE Injection、DLL Injection、Process Injection、Thread Injection、Code Injection、Shellcode Injection、ELF Injection、Dylib Injection, including 400+Tools and 350+posts
:fish: PoC of a VBA macro spawning a process with a spoofed parent and command line.
Some DLL Injection techniques in C++ implemented for both x86 and x64 windows OS processes
Materials for the workshop "Red Team Ops: Havoc 101"
This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and SystemArgument[0-3] parameters by passing a random pop r32; ret gadget can be used for stealthy code injection.
A C# DLL injection library
Centralized resource for listing and organizing known injection techniques and POCs
Incomplete project
A Dropper POC with a focus on aiding in EDR evasion, NTDLL Unhooking followed by loading ntdll in-memory, which is present as shellcode (using pe2shc by @hasherezade). Payload encryption via SystemFucntion033 NtApi and No new thread via Fiber
Kernel Security driver used to block past, current and future process injection techniques on Windows Operating System.
Source code of exploiting windows API for red teaming series
x64/x86 shellcode injector
Shellcode obfuscation tool to avoid AV/EDR.
Russian Wipers Dropper (educational-purposes )
Process Injection Techniques with Golang
Threadless shellcode injection tool
C# Implementation of Jared Atkinson's Get-InjectedThread.ps1
Process Injection via Component Object Model (COM) IRundown::DoCallback().
0day Windows/x64 Inject All Processes With Meterpreter Reverse Shell Shellcode (655 bytes)
Nim process hollowing loader
Download data from the internet bypassing the firewall using process injection
Solving game hacking challenges (CE/AC) using ASM/C++
Inject shellcode into process via "EarlyBird"
ProcessGhosting 技术的 rust 实现版本
Variety of different process injections implemented in C++
Learning Various Process Injection Techniques
An implementation of the Process Hollowing technique.
Examples of basic windows API hooking techniques
Unused DLL hollowing PoC in Nim