processrefund
Process duplication
A technique to create a duplicate process on Windows to execute malicious code while avoiding certain anti-virus detection methods.
An attempt at Process Doppelgänging
183 stars
21 watching
95 forks
Language: C
last commit: almost 7 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 hasherezade/process_doppelganging | An implementation of a malware injection technique using PE injection to create and control malicious processes | 580 |
 westonplatter/phashion | A Ruby wrapper around a perceptual hash library to detect duplicate multimedia files. | 704 |
 niemand-sec/reclass.net-driverreader | A tool to read process memory in a game without AC bypassing | 89 |
 klezvirus/sharpselfdelete | Implementation of a Windows exploitation technique using P/Invoke to delete processes from memory | 147 |
 kornelski/dupe-krill | A tool that identifies and replaces duplicate files with hardlinks to reduce storage space. | 186 |
 hagrid29/duplicatedump | Tools to dump LSASS memory without detection using custom LSA plugin and duplicated handle | 199 |
 octoberfest7/cohab_processes | Helps identify foreign processes on a host machine by highlighting unknown processes | 81 |
 tjx666/unplugin-detect-duplicated-deps | Detects and reports duplicate dependencies in packaged projects during the build process | 76 |
 testdouble/suture | A tool to help refactor poorly understood code in Ruby by introducing clear entry points and minimizing side effects. | 1,409 |
 bambooengineering/que-unique | Ensures identical jobs are not scheduled multiple times during a transaction block | 2 |
 src-d/apollo | A system to identify near-duplicate code projects and files by analyzing their similarities | 52 |
 shadskii/reactorfx | A library that simplifies the interaction between JavaFX events and Project Reactor's reactive streams | 35 |
 riesenia/cakephp-duplicatable | A plugin for duplicating entities and related data in CakePHP applications. | 52 |
 hexdigest/execpool | A tool that creates a pool of pre-spawned processes to reduce latency in I/O-bound applications by reusing existing resources. | 28 |
 icebearfriend/quickrundown | A tool that enhances characterization and research of processes on a host by providing a graphical overlay for the Cobalt Strike PS function. | 30 |