├── .gitignore
├── CMakeLists.txt
├── CMakeSettings.json
├── LICENSE
├── README.md
├── common
    └── ntddk.h
├── mitigation
    └── evasion
    │   └── copysyscallstub.cpp
├── payload
    ├── dll_payload.cpp
    ├── executable_payload.cpp
    └── shellcode.hpp
├── pe_injection
    ├── dll_injection
    │   ├── appcertdlls_injection.cpp
    │   ├── appinitdlls_injection.cpp
    │   ├── classic_dll_injection.cpp
    │   ├── knowndllscache_injection.cpp
    │   ├── setwindowshook_injection.cpp
    │   └── shim_injection.cpp
    ├── pe_inject.cpp
    ├── process_doppelganging.cpp
    ├── process_ghosting.cpp
    ├── process_hollowing.cpp
    └── transacted_hollowing.cpp
└── shellcode_injection
    ├── atombombing_injection.cpp
    ├── classic_shellcode_injection.cpp
    ├── entrypoint_injection.cpp
    ├── ewmi_injection.cpp
    ├── ghostwriting_injection.cpp
    ├── kernelcallbacktable_injection.cpp
    ├── propagate_injection.cpp
    ├── queueapc_injection.cpp
    ├── section_injection.cpp
    ├── threadcontext_injection.cpp
    └── tlscallback_injection.cpp


/.gitignore:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/.gitignore


--------------------------------------------------------------------------------
/CMakeLists.txt:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/CMakeLists.txt


--------------------------------------------------------------------------------
/CMakeSettings.json:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/CMakeSettings.json


--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/LICENSE


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/README.md


--------------------------------------------------------------------------------
/common/ntddk.h:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/common/ntddk.h


--------------------------------------------------------------------------------
/mitigation/evasion/copysyscallstub.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/mitigation/evasion/copysyscallstub.cpp


--------------------------------------------------------------------------------
/payload/dll_payload.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/payload/dll_payload.cpp


--------------------------------------------------------------------------------
/payload/executable_payload.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/payload/executable_payload.cpp


--------------------------------------------------------------------------------
/payload/shellcode.hpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/payload/shellcode.hpp


--------------------------------------------------------------------------------
/pe_injection/dll_injection/appcertdlls_injection.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/pe_injection/dll_injection/appcertdlls_injection.cpp


--------------------------------------------------------------------------------
/pe_injection/dll_injection/appinitdlls_injection.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/pe_injection/dll_injection/appinitdlls_injection.cpp


--------------------------------------------------------------------------------
/pe_injection/dll_injection/classic_dll_injection.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/pe_injection/dll_injection/classic_dll_injection.cpp


--------------------------------------------------------------------------------
/pe_injection/dll_injection/knowndllscache_injection.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/pe_injection/dll_injection/knowndllscache_injection.cpp


--------------------------------------------------------------------------------
/pe_injection/dll_injection/setwindowshook_injection.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/pe_injection/dll_injection/setwindowshook_injection.cpp


--------------------------------------------------------------------------------
/pe_injection/dll_injection/shim_injection.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/pe_injection/dll_injection/shim_injection.cpp


--------------------------------------------------------------------------------
/pe_injection/pe_inject.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/pe_injection/pe_inject.cpp


--------------------------------------------------------------------------------
/pe_injection/process_doppelganging.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/pe_injection/process_doppelganging.cpp


--------------------------------------------------------------------------------
/pe_injection/process_ghosting.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/pe_injection/process_ghosting.cpp


--------------------------------------------------------------------------------
/pe_injection/process_hollowing.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/pe_injection/process_hollowing.cpp


--------------------------------------------------------------------------------
/pe_injection/transacted_hollowing.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/pe_injection/transacted_hollowing.cpp


--------------------------------------------------------------------------------
/shellcode_injection/atombombing_injection.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/shellcode_injection/atombombing_injection.cpp


--------------------------------------------------------------------------------
/shellcode_injection/classic_shellcode_injection.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/shellcode_injection/classic_shellcode_injection.cpp


--------------------------------------------------------------------------------
/shellcode_injection/entrypoint_injection.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/shellcode_injection/entrypoint_injection.cpp


--------------------------------------------------------------------------------
/shellcode_injection/ewmi_injection.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/shellcode_injection/ewmi_injection.cpp


--------------------------------------------------------------------------------
/shellcode_injection/ghostwriting_injection.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/shellcode_injection/ghostwriting_injection.cpp


--------------------------------------------------------------------------------
/shellcode_injection/kernelcallbacktable_injection.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/shellcode_injection/kernelcallbacktable_injection.cpp


--------------------------------------------------------------------------------
/shellcode_injection/propagate_injection.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/shellcode_injection/propagate_injection.cpp


--------------------------------------------------------------------------------
/shellcode_injection/queueapc_injection.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/shellcode_injection/queueapc_injection.cpp


--------------------------------------------------------------------------------
/shellcode_injection/section_injection.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/shellcode_injection/section_injection.cpp


--------------------------------------------------------------------------------
/shellcode_injection/threadcontext_injection.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/shellcode_injection/threadcontext_injection.cpp


--------------------------------------------------------------------------------
/shellcode_injection/tlscallback_injection.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Fahersto/code_injection/HEAD/shellcode_injection/tlscallback_injection.cpp


--------------------------------------------------------------------------------