Skip to content

Latest commit

 

History

History
204 lines (155 loc) · 7.6 KB

README.md

File metadata and controls

204 lines (155 loc) · 7.6 KB

Centralized resource for listing and organizing known injection techniques and POCs

Introduction

I've been thinking about putting together a list of process injection techniques and ingenious POCs because I haven't found a decent one. This list focuses on process-spawning injection methods and actual process injection, excluding pre-execution techniques (e.g. AppCert and AppInit Dlls), and self-injection techniques.

PRs are welcome to help me maintain and extend this list!

Linux Injection

Process Spawning

LD_PRELOAD

Process Injection

PTRACE

Proc Memory

Windows Injection

Process Spawning

Process Hollowing

Transacted Hollowing

Process Doppelganging

Process Herpaderping

Process Ghosting

Early Bird

EntryPoint Patching

Ruy-Lopez

Early Cascade Injection

Kernel Callback Table Injection

Process Injection

Classic Dll Injection

Classic Shellcode Injection

Dll Injection via SetWindowsHookEx

Reflective Dll Injection

PE Injection

Section Mapping Injection

APC Queue Injection

Thread Execution Hijacking

Atom Bombing Injection

Mocking jay Injection

ListPlanting Injection

Extra Window Memory Injection

ThreadlessInject

EPI

DllNotification Injection

D1rkInject

NtQueueAPCThreadEx Gadget Injection

Dirty-Vanity

Function Stomping

Caro-Kann

Stack Bombing

Ghost Writing

Ghost Writing 2

Mapping Injection with Instrumentation Callback

SetProcessInjection

Pool Party Injection

Thread Name Calling