A comprehensive collection of assemblies, injectors, shellcodes, samples, loaders and droppers. - stickybitone/Atomics

targeted extension of 0xXycs aka JakeSwiz shellcoding research - ekomsSavior/hades_gate

Manual map injector by NYVEX. PE loading via shellcode. Bypasses LoadLibrary. Relocations, imports, TLS, SEH (x64). x86/x64. Educational. - NYVEXXX/RemotePE-Loader

Shared object ELF Process injection and loading resources. - IdanBanani/ELF-Processs-Injection-Linux-Android

claude-red is a curated library of offensive security skills designed for the Claude skills system. Each skill is a structured SKILL.md file that primes Claude with expert-level methodology for a s...

injects a payload into explorer.exe, which creates a window in band 4 (ZBID_IMMERSIVE_NOTIFICATION) - 000nico/band-4-window-creation

Shellcode reflective DLL injection in Rust. Contribute to 200ug/airborne development by creating an account on GitHub.

It bridges my research with a functional tool. I want to provide a safe, open-source framework for hackers to test evasion and for defenders to improve detection through hands-on learning. - cocome...

Shellcode Encryption and Obfuscation. Contribute to SilentisVox/Payload-Obfuscation development by creating an account on GitHub.

Create a Shellcode Dropper from any Windows Module - maxDcb/PeDropper

Backdoor Visual Studio project files with custom shellcode, which executes whenever the project is opened or built. - Meltedd/VisualSploit

Linux syscall-level intrusion detection system using ptrace. Monitors processes in real time and alerts on suspicious behaviour including privilege escalation, shellcode injection, fork bombs, and ...

Simple shellcode to be injected to a process in win32api - vKwamboka57/processInjection

Didactic ARM32 shellcode project for studying how a keyboard configuration poisoning payload can be built, injected, and debugged in a controlled Raspbian lab. - rubiotelmo0/keyboard-poisoning

An injector for injecting shellcode into PE image files. - RTS-Framework/PE-Injector

Go offensive-security research library — 15+ injection methods, AMSI/ETW/ntdll-unhook evasion, sleep mask (Ekko × XOR/RC4/AES), call-stack spoof, BYOVD (RTCore64) + kernel callback removal, LSASS d...

Inject shell code with _PROCESS_INSTRUMENTATION_CALLBACK_INFORMATION using NtSetInformationProcess - 000nico/instrumentation-callback-injection

An advanced Windows shell code loader and generator toolset featuring XOR encryption, debug protection, and GUI capabilities for penetration testing. - Drawmwm/WindowsShell-Injector-Shellcode-Loader

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches). - hasherezade/pe-sieve