Projects in Awesome Lists tagged with process-injection
A curated list of projects in awesome lists tagged with process-injection .
https://github.com/klezvirus/inceptor
Template-Driven AV/EDR Evasion Framework
amsi-bypass amsi-evasion av-bypass av-edr-bypass av-evasion code-injection dinvoke edr-bypass obfuscation payload-generator pe-packer pinvoke process-injection red-team red-teaming
Last synced: 08 Apr 2025
https://github.com/klezVirus/inceptor
Template-Driven AV/EDR Evasion Framework
amsi-bypass amsi-evasion av-bypass av-edr-bypass av-evasion code-injection dinvoke edr-bypass obfuscation payload-generator pe-packer pinvoke process-injection red-team red-teaming
Last synced: 04 Apr 2025
https://github.com/alphaseclab/injection-stuff
PE Injection、DLL Injection、Process Injection、Thread Injection、Code Injection、Shellcode Injection、ELF Injection、Dylib Injection, including 400+Tools and 350+posts
code-injection dll-injection dylib-injection elf-injection pe-injection process-injection shellcode-injection thread-injection
Last synced: 07 Feb 2026
https://github.com/alphaSeclab/injection-stuff
PE Injection、DLL Injection、Process Injection、Thread Injection、Code Injection、Shellcode Injection、ELF Injection、Dylib Injection, including 400+Tools and 350+posts
code-injection dll-injection dylib-injection elf-injection pe-injection process-injection shellcode-injection thread-injection
Last synced: 11 Jul 2025
https://github.com/christophetd/spoofing-office-macro
:fish: PoC of a VBA macro spawning a process with a spoofed parent and command line.
office-macro parent-process-spoofing process-injection windows-internals windows-security
Last synced: 25 Jan 2026
https://github.com/WesleyWong420/RedTeamOps-Havoc-101
Materials for the workshop "Red Team Ops: Havoc 101"
active-directory av-evasion edr-bypass havoc opsec process-injection red-team-ops
Last synced: 12 Apr 2025
https://github.com/lloydlabs/ntqueueapcthreadex-ntdll-gadget-injection
This novel way of using NtQueueApcThreadEx by abusing the ApcRoutine and SystemArgument[0-3] parameters by passing a random pop r32; ret gadget can be used for stealthy code injection.
process-injection shellcode shellcode-injection
Last synced: 29 Oct 2025
https://github.com/enkomio/managedinjector
A C# DLL injection library
csharp dll-injection dll-injector dotnet injection process-control process-injection process-injector reverse-engineering reversing
Last synced: 20 Aug 2025
https://github.com/enkomio/ManagedInjector
A C# DLL injection library
csharp dll-injection dll-injector dotnet injection process-control process-injection process-injector reverse-engineering reversing
Last synced: 11 Jul 2025
https://github.com/reveng007/reflectiventdll
A Dropper POC with a focus on aiding in EDR evasion, NTDLL Unhooking followed by loading ntdll in-memory, which is present as shellcode (using pe2shc by @hasherezade). Payload encryption via SystemFucntion033 NtApi and No new thread via Fiber
antivirus bypass bypass-antivirus dropper edr evasion fiber implant malware ntdll-unhooking process-injection systemfunction033
Last synced: 02 May 2025
https://github.com/gh0x0st/wanderer
An open-source process injection enumeration tool written in C#
enumeration-tool offensive-security pen-300 process-injection security-tools
Last synced: 29 Oct 2025
https://github.com/PI-Defender/pi-defender
Kernel Security driver used to block past, current and future process injection techniques on Windows Operating System.
anti-injection anti-malware antivirus blue-team defense driver kernel malware process-injection security windows
Last synced: 20 Apr 2025
https://github.com/voidvxvi/HellBunny
Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks
api-hashing direct-syscalls dll dll-sideloading edr-bypass edr-evasion iat-camouflage indirect-syscalls maldev malware-development msvc native-api ntapi payload-encryption process-injection shellcode-injection shellcode-loader windows
Last synced: 30 Dec 2025
https://github.com/ZeroMemoryEx/U-Boat
Russian Wipers Dropper (educational-purposes )
dropper malware malware-development malware-research malware-sample process-injection win32api wiper
Last synced: 11 Jul 2025
https://github.com/0xlane/com-process-inject
Process Injection via Component Object Model (COM) IRundown::DoCallback().
process-injection process-injector redteam-tools rust windows
Last synced: 09 Apr 2025
https://github.com/en14c/erebus
Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster
c elf elf-binaries elf64 linux linux-system-programming process-injection proof-of-concept security virus x64-assembly
Last synced: 09 Jul 2025
https://github.com/kara-4search/earlybirdinjection_csharp
Inject shellcode into process via "EarlyBird"
apc bypass csharp earlybird edr injection process-injection redteam shellcode
Last synced: 17 Jul 2025
https://github.com/0xlane/process_ghosting
ProcessGhosting 技术的 rust 实现版本
pe-injection pe-injector pefile process-ghosting process-injection process-injector rust windows
Last synced: 09 Apr 2025
https://github.com/superswan/memloader_inj-win
Inject remote shellcode or DLL file into process memory using FileMapping
dll-injection game-hacking hacking-tools malware memory-injection pentesting process-injection windows
Last synced: 11 Apr 2026
https://github.com/kara-4search/threadhijacking_csharp
Process inject technique "Thread hijacking" via csharp
bypass csharp process-injection processinjection redteam thread-hijacking threadhijack
Last synced: 23 Apr 2025
https://github.com/damonmohammadbagher/nativepayload_tinjection
Remote Thread Injection by C# + Delegate Techniques
antivirus antivirus-evasion csharp pentesting process-injection redteaming thread-injection
Last synced: 07 May 2025
https://github.com/joaoviictorti/processinjection-rs
Process Injection - Shellcode (Rust)
process-injection rust shellcode
Last synced: 15 Apr 2025
https://github.com/blacktechx011/processghosting
Process Ghosting technique implementation in Rust - Execute PE files from memory without leaving traces on disk
blacktechx blacktechx011 process-ghosting process-ghosting-rust process-injection processghosting rust rust-library windows
Last synced: 28 May 2026
https://github.com/ricardojoserf/jeringuilla
Process injection framework in C#. It uses dynamic function loading using delegates and AES-encryption for strings and payloads
earlybird process-injection process-injector
Last synced: 18 Jan 2026
https://github.com/damonmohammadbagher/nativepayload_tid
Remote Thread Injection by C# Delegate
antivirus antivirus-evasion delegate pentesting process-injection redteam
Last synced: 07 May 2025
https://github.com/gurkeow/winmal
Advanced PowerShell-based red team implant along with a custom C2 (Command & Control) server
aes-gcm-encryption amsi-bypass c2 edr-evasion github-config malware persistence polyglot process-ghosting process-injection shellcode-injection shellcode-loader shellcode-runner windows
Last synced: 05 Apr 2025
https://github.com/affix/rs-shellcode-runners
Running Shellcode using Rust
hacking osep pentesting process-injection shellcode shellcode-loader shellcode-runner
Last synced: 15 Apr 2025
https://github.com/geniuszly/GenBlueStacksInjector
BlueStacksInjector is a Python script designed to automate the injection of a payload into the startup directories of user profiles within a shared directory environment, such as BlueStacks.
android-emulator automation bluestacks cve cve-2024-33352 cybersecurity ethical-hacking genbluestacksinjector injector memory-injection penetration-testing process-injection python reverse-engineering security-tools vuln
Last synced: 07 May 2025
https://github.com/geniuszly/genbluestacksinjector
BlueStacksInjector is a Python script designed to automate the injection of a payload into the startup directories of user profiles within a shared directory environment, such as BlueStacks.
android-emulator automation bluestacks cve cve-2024-33352 cybersecurity ethical-hacking genbluestacksinjector injector memory-injection penetration-testing process-injection python reverse-engineering security-tools vuln
Last synced: 04 Mar 2025
https://github.com/x0reaxeax/ghostwriting-x64
PoC implementation of the GhostWriting injection technique for x64 Windows
ghostwriting injection poc popcalc process-injection shellcode-injection shellcode-injector windows wpm-less-wpm x64
Last synced: 25 Apr 2025
https://github.com/vibheksoni/reversing-utils
A growing collection of open-source tools for reverse engineering, debugging, and software analysis. Includes utilities for process manipulation, binary inspection, and web analysis. Ideal for security researchers, developers, and CTF enthusiasts. Contribute and explore!
automation binary-analysis ctf-tools debug-tools debugging developer-tools hacking infosec linux-tools malware-analysis memory-inspection open-source process-injection process-manipulation reverse-engineering reversing-tools security-tools software-analysis utilities windows-tools
Last synced: 16 Jan 2026
https://github.com/x0reaxeax/ghostwriting64
PoC implementation of the GhostWriting injection technique for x64 Windows
defense-evasion ghostwriting injection pentesting poc popcalc process-injection redteam shellcode-execute shellcode-injection windows windows-x64 wpm-less-wpm x86-64
Last synced: 21 Aug 2025
https://github.com/jsmoreira02/process_injection
Injection of malicious code into legitimate Windows processes for evasion and simple malware to gain unauthorized access, using the Windows API. Serves as proof of concept or intrusion detection exercises.
cybersecurity-awareness cybsersecurity hacking malware-development payload process-injection windows windows-api
Last synced: 12 Mar 2025
https://github.com/n3m3s1spy/injectionlab
InjectionLab is an educational toolkit showcasing various Windows code injection techniques. It provides well-documented examples for security researchers and defenders to explore process injection, memory manipulation, and detection strategies.
av-evasion code-injection defensive-security ethical-hacking exploit-development learning malware-analysis malware-developing malware-development memory-manipulation process-injection red-teaming red-teaming-tools reverse-engineering security-research system-internals winapi windows
Last synced: 19 May 2026
https://github.com/dexmoh/cli-dll-injector
A CLI DLL injector written in C++ for x86 and x64 architectures.
code-injection cpp dll-injection dll-injector process-injection reverse-engineering windows
Last synced: 18 May 2026
https://github.com/wichtigerlelek/vendetta
Stealthy shellcode injector for testing EDRs and Anti-Cheats. Implements Phantom DLL Hollowing, threadless execution, and manual PEB linking of the Phantom DLL module to look as legit as possible.
edr-evasion malware-development phantom-dll process-injection windows-internals
Last synced: 06 Mar 2026
https://github.com/commandcracker/cheatbox
CheatBox is currently only a DLL injector. The plan for this project is that CheatBox will become a tool like Cheat Engine with a QT interface. Also, some features like automatic game injections are planed.
dll-injection dll-injector memory-hacking process-injection
Last synced: 14 Jun 2026
https://github.com/lynk4/red-team
A hands-on repository for beginners who want to explore and experiment with red teaming and offensive security methods.
adversary-emulation fin6 mitre process-injection red-team red-teaming-tools windows-process
Last synced: 22 Jul 2025
https://github.com/malforge-maldev-public-organization/process-code-injection-techniques-cheatsheet
A concise cheatsheet covering key process code injection techniques for red teaming and malware development.
early-apc-injection injection-attacks malware-development malware-research ntapi-injection process-hallowing process-injection red-teaming thread-hijacking
Last synced: 11 Feb 2026
