2 रिपॉजिटरी
The process of decrypting an encrypted payload in memory before injecting and executing it.
Distinct from Process Injection Payloads: Specifically covers the decryption-then-injection workflow to evade static analysis, as opposed to general shellcode insertion.
Explore 2 awesome GitHub repositories matching operating systems & systems programming · Encrypted Shellcode Injection. Refine with filters or upvote what's useful.
OffensiveRust is a red team toolkit and malware development kit written in Rust. It serves as an evasion framework and post-exploitation library, providing a collection of offensive security primitives and a Windows API wrapper for interacting with low-level system functions and undocumented APIs. The project focuses on bypassing security software through direct system calls, memory obfuscation, and stealthy payload execution. It implements techniques to defeat static binary analysis via compile-time string encryption and payload obfuscation, while avoiding detection using parent process ID s
Executes encrypted payloads by decrypting them with AES and queuing an asynchronous procedure call.
Phantom-Evasion is a security research framework designed for generating obfuscated payloads and automating post-exploitation tasks during authorized security assessments. It provides a suite of utilities for creating custom executables and libraries intended to test the effectiveness of antivirus and endpoint security detection systems. The framework distinguishes itself through a focus on memory-resident operations, allowing for the execution of encrypted binaries and shellcode directly within system memory. By utilizing techniques such as junk code injection, payload encryption, and remote
Performs process shellcode injection by executing custom shellcode within local or remote processes using memory allocation and execution techniques.