runpe
There are 33 repositories under runpe topic.
aaaddress1/RunPE-In-Memory
Run a Exe File (PE Module) in memory (like an Application Loader)
itm4n/VBA-RunPE
A VBA implementation of the RunPE technique or how to bypass application whitelisting.
hasherezade/demos
Demos of various injection techniques found in malware
naksyn/PythonMemoryModule
pure-python implementation of MemoryModule technique to load dll and unmanaged exe entirely from memory
hasherezade/chimera_pe
ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports payload-side
TheNewAttacker64/Theattacker-Crypter
Tool to evade Antivirus With Different Techniques
adamhlt/Process-Hollowing
Process Hollowing in C++ (x86 / x64) - Process PE image replacement
DosX-dev/UPX-Patcher
Make "upx -d" unpacking impossible!
NYAN-x-CAT/CSharp-RunPE
Hide malware behind a legit process C#
TalosSec/Cronos-Crypter
Cronos Crypter is an simple example of crypter created for educational purposes.
XaFF-XaFF/ZwProcessHollowing
ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption
abdullah2993/go-runpe
execute a PE in the address space of another PE aka process hollowing
itaymigdal/PichichiH0ll0wer
Nim process hollowing loader
Paskowsky/DreamProtectorFree
Simple protector to show how to run a payload without dropping it using RunPE Technique
TheKevinWang/HellsRunPE
RunPE using Hell's Gate technique.
BelodedAleksey/go_libpeconv
Golang version of https://github.com/hasherezade/libpeconv
Chainski/Chainski-Crypter
Lime Crypter Obfuscator Mod
ghzcrlvct/Adrena
Software Protector
1M50RRY/runpe-native-loader
Loader and RunPE file executer
ivkin25/Process-Hollowing
An implementation of the Process Hollowing technique.
K3rnel-Dev/RunPE-Builder
Demo work of injection into someone else's address space process
hidd3ncod3s/runpedmp
RunPE dump - I wrote this to have better control over the analysis of malwares. I can stop and analysis malware when it uses some of the API's i hook and to dump the memory while it is using RunPE/PH techniques.
Siysyter/Simple-RunPE-Process-Hollowing
The RunPE program is written in C# to execute a specific executable file within another files memory using the ProcessHollowing technique.
IntelSDM/PEFromMemory
Executing EXE Files From Memory
Evi1Grey5/Loader
The most common techniques to this day are RunPE and LoadPE 👨💻
CodiumAlgorithm/-Delphi-Process-Hollowing-RunPE-by-Jean-Pierre-LESUEUR
Delphi Process Hollowing, Updated.
hidd3ncod3s/PackerAttacker
C++ application that uses memory and code hooks to detect packers
carboncryptt/CarbonCrypt
Carbon Crypter / Packer
HadiMed/Hollow
Implementation of process hollowing on x32 .
mm-rezaei/ProcessHollowing1
Implementation of the Process Hollowing technique for process injection (This is the first of three methods in the series)
mm-rezaei/ProcessHollowing2
Implementation of the Process Hollowing technique for process injection (This is the second of three methods in the series)
mm-rezaei/ProcessHollowing3
Implementation of the Process Hollowing technique for process injection (This is the third of three methods in the series)