Classic RunPE (CreateProcess, NtGetContextThread, NtUnmapViewOfSection, NtWriteVirtualMemory, NtSetContextThread, NtResumeThread) using the Hell's Gate technique to evade usermode API monitoring by dynamically executing syscalls.
forked from TheKevinWang/HellsRunPE
RunPE using Hell's Gate technique.
License
y11en/HellsRunPE
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Folders and files
Name | Name | Last commit message | Last commit date | |
---|---|---|---|---|
Repository files navigation
About
RunPE using Hell's Gate technique.
Resources
License
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published
Languages
- C 98.8%
- Assembly 1.2%