• Stars
    star
    499
  • Rank 88,341 (Top 2 %)
  • Language
  • Created over 4 years ago
  • Updated over 4 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

PE Injection、DLL Injection、Process Injection、Thread Injection、Code Injection、Shellcode Injection、ELF Injection、Dylib Injection, including 400+Tools and 350+posts

所有收集类项目

Injection

  • PE注入、DLL注入、进程注入、线程注入、代码注入、Shellcode注入、ELF注入、Dylib注入,当前包括400+工具和350+文章,根据功能进行了粗糙的分类
  • English Version

目录

PE注入


工具


文章

DLL注入


集合


工具


文章

进程注入


工具


文章

线程注入


工具


文章

代码注入


工具


文章

Shellcode注入


工具

  • [2209星][4m] [Py] trustedsec/unicorn 通过PowerShell降级攻击, 直接将Shellcode注入到内存
  • [476星][21d] [Py] trustedsec/meterssh 将Shellcode注入内存,然后通过SSH隧道传输(端口任选,并伪装成普通SSH连接)
  • [225星][4m] [PS] outflanknl/excel4-dcom PowerShell和Cobalt Strike脚本,通过DCOM执行Excel4.0/XLM宏实现横向渗透(直接向Excel.exe注入Shellcode)
  • [112星][2m] [C++] josh0xa/threadboat 使用线程执行劫持将本机shellcode注入到标准的Win32应用程序中
  • [77星][4m] [C] dimopouloselias/simpleshellcodeinjector 接收十六进制的shellcode作为参数并执行它
  • [66星][2m] [Py] sensepost/anapickle 用Python的Pickle语言编写shellcode和操作Pickle注入shellcode的工具集。
  • [43星][1m] [Py] borjamerino/tlsinjector Python script to inject and run shellcodes through TLS callbacks
  • [27星][2y] [Py] taroballzchen/shecodject shecodject is a autoscript for shellcode injection by Python3 programing
  • [19星][5y] [C] jorik041/cymothoa Cymothoa is a backdooring tool, that inject backdoor's shellcode directly into running applications. Stealth and lightweight...
  • [16星][9m] [PLpgSQL] michaelburge/redshift-shellcode Example of injecting x64 shellcode into Amazon Redshift
  • [10星][1y] [C++] egebalci/injector Simple shellcode injector.
  • [4星][3y] [Shell] thepisode/linux-shellcode-generator Experiments on Linux Assembly shellcodes injection
  • [None星][Go] pioneerhfy/goback GOback is a backdoor written in GO that use shellcode injection technique for achiving its task.

文章

ELF注入


工具

  • [269星][10d] [Shell] cytopia/pwncat pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)
  • [106星][14d] [C] comsecuris/luaqemu QEMU-based framework exposing several of QEMU-internal APIs to a LuaJIT core injected into QEMU itself. Among other things, this allows fast prototyping of target systems without any native code and minimal effort in Lua.
  • [73星][10d] [C] zznop/drow Injects code into ELF executables post-build
  • [45星][1m] [C] jmpews/evilelf Malicious use of ELF such as .so inject, func hook and so on.
  • [26星][4m] [C++] shaxzy/nixware-csgo Source code of Nixware. Cheat doesn't inject for some reason, fix it uself or just paste from it
  • [9星][3m] [C] mfaerevaag/elfinjector Code injector for ELF binaries (incl. PIE)
  • [1星][2y] [JS] mshoop/web-xss-attack Exploring website security through cross-site scripting attacks, maliciously injected JavaScript and self-propagating worms

文章

Dylib注入


工具

  • [2032星][3y] [Swift] urinx/iosapphook 专注于非越狱环境下iOS应用逆向研究,从dylib注入,应用重签名到App Hook
  • [752星][5y] [ObjC] kjcracks/yololib dylib injector for mach-o binaries
  • [506星][13d] [Objective-C++] bishopfox/bfinject Dylib injection for iOS 11.0 - 11.1.2 with LiberiOS and Electra jailbreaks
  • [191星][3m] [Swift] codesourse/iinjection an app for OS X that can inject dylib and (re)sign apps and bundle them into ipa files that are ready to be installed on an iOS device.
  • [173星][16d] [C] scen/osxinj osx dylib injection

文章

Android


工具

  • [1300星][4m] [JS] megatronking/httpcanary 一个强大的捕获和注入工具的Android平台
  • [475星][3y] [Smali] sensepost/kwetza Python 脚本,将 Meterpreter payload 注入 Andorid App
  • [447星][9m] [Java] megatronking/netbare Net packets capture & injection library designed for Android
  • [252星][16d] [Py] feicong/jni_helper AndroidSO自动化分析工具(非虫)
  • [148星][4m] [Java] zhouat/inject-hook for android
  • [144星][3y] [C] xmikos/setools-android Unofficial port of setools to Android with additional sepolicy-inject utility included
  • [136星][11d] [Lua] lanoox/luject A static injector of dynamic library for application (android, iphoneos, macOS, windows, linux)
  • [122星][5y] irsl/adb-backup-apk-injection Android ADB backup APK Injection POC
  • [97星][4y] [Shell] jlrodriguezf/whatspwn Linux tool used to extract sensitive data, inject backdoor or drop remote shells on android devices.
  • [76星][4y] [Py] moosd/needle Android framework injection made easy
  • [56星][4m] [C] shunix/tinyinjector Shared Library Injector on Android
  • [55星][4m] [Java] igio90/fridaandroidinjector Inject frida agents on local processes through an Android app
  • [52星][2m] [Py] alessandroz/pupy Python编写的远控、后渗透工具,跨平台(Windows, Linux, OSX, Android)
  • [52星][14d] [TS] whid-injector/whid-mobile-connector Android Mobile App for Controlling WHID Injector remotely.
  • [48星][16d] [Py] ikoz/jdwp-lib-injector inject native shared libraries into debuggable Android applications
  • [46星][30d] [Shell] jbreed/apkinjector Android APK Antivirus evasion for msfvenom generated payloads to inject into another APK file for phishing attacks.
  • [40星][8m] [Java] ivianuu/contributer Inject all types like views or a conductor controllers with @ContributesAndroidInjector
  • [33星][1y] [Groovy] eastwoodyang/autoinject Android 通用的组件自动注册、自动初始化解决方案
  • [30星][6m] [Java] cristianturetta/mad-spy 一个用于教育目的的恶意软件
  • [24星][5m] [Smali] aress31/sci 用于在Android应用程序中自动化汇编代码注入(trojanting)过程的框架
  • [13星][11m] [JS] cheverebe/android-malware Injected malicious code into legitimate andoid applications. Converted a keyboard app into a keylogger and an MP3 downloader into an image thief.

文章

其他


工具


文章

贡献

内容为系统自动导出, 有任何问题请提issue

More Repositories

1

awesome-reverse-engineering

Reverse Engineering Resources About All Platforms(Windows/Linux/macOS/Android/iOS/IoT) And Every Aspect! (More than 3500 open source tools and 2300 posts&videos)
4,431
star
2

awesome-rat

RAT And C&C Resources. 250+ Open Source Projects, 1200+ RAT/C&C blog/video.
1,824
star
3

awesome-burp-suite

Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
993
star
4

awesome-network-stuff

Resources about network security, including: Proxy/GFW/ReverseProxy/Tunnel/VPN/Tor/I2P, and MiTM/PortKnocking/NetworkSniff/NetworkAnalysis/etc。More than 1700 open source tools for now. Post incoming.
866
star
5

awesome-forensics

Awesome Forensics Resources. Almost 300 open source forensics tools, and 600 blog posts about forensics.
609
star
6

sec-tool-list

More than 21K security related open source tools, sorted by star count. Both in markdown and json format.
581
star
7

windows-security

Resources About Windows Security. 1100+ Open Source Tools. 3300+ Blog Post and Videos.
483
star
8

anti-av

Resources About Anti-Virus and Anti-Anti-Virus, including 200+ tools and 1300+ posts
425
star
9

android-security

Android Security Resources.
335
star
10

hooking

Resources About Hooking. For All Platforms. Currently 300+ Tools And 600+ Posts.
303
star
11

obfuscation-stuff

Source Code Obfuscation And Binary Obfuscation, Multiple Languages And Multiple Platforms. Including 250+ Tools and 600+ Posts
285
star
12

awesome-security-collection

1000+ Github Security Resource Collection Repos.
263
star
13

cobalt-strike

Resources About Cobalt Strike. 100+ Tools And 200+ Posts.
241
star
14

fuzzing-stuff

Resources About Fuzzing, For Multiple Platforms And All Popular Fuzzers. 500+ Open Source Tools Sorted By Star Count, 800+ Blog Posts Sorted By Publish Time.
233
star
15

shellcode-resources

Resources About Shellcode
203
star
16

awesome-webshell

Awesome webshell collection. Including 150 Github repo, and 200+ blog posts.
165
star
17

DBI-Stuff

Resources About Dynamic Binary Instrumentation and Dynamic Binary Analysis
127
star
18

all-my-collection-repos

All Security Resource Collections Repos That I Published.
116
star
19

anti-debug

C++
115
star
20

persistence

Resources About Persistence, Multiple Platforms. Including ~80 Tools and 300+ Posts.
96
star
21

awesome-honeypot

Awesome Honeypot Resource Collection. Including 250+ Honeypot tools, and 350+ posts about Honeypot.
86
star
22

bypass-uac

C++
56
star
23

sec-daily-2020

2020年发布到阿尔法实验室微信公众号的所有安全资讯汇总
40
star
24

sec-daily-2019

2019年天融信阿尔法实验室在微信公众号发布的所有安全资讯汇总
33
star
25

malware-ioc-hash

Collection of malware ioc hashes from blog posts. A Python script is provided to search through it.
Python
16
star
26

TP-Link-wr940n-vulnerability-details

Details of vulnerability of TP-Link router wr940n
7
star