├── .gitattributes ├── .gitignore ├── README.md ├── encryption.nim ├── evasion ├── antiEmulation.nim ├── patchAMSI.nim ├── patchETW.nim └── unhookNTDLL.nim ├── injection ├── createRemoteThread.nim ├── processHollowing.nim └── runPE.nim ├── loader.nim ├── screenshots └── example.png └── syscalls └── GetSyscallStub.nim /.gitattributes: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/adamsvoboda/nim-loader/HEAD/.gitattributes -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- 1 | nimcache/ 2 | *.exe -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/adamsvoboda/nim-loader/HEAD/README.md -------------------------------------------------------------------------------- /encryption.nim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/adamsvoboda/nim-loader/HEAD/encryption.nim -------------------------------------------------------------------------------- /evasion/antiEmulation.nim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/adamsvoboda/nim-loader/HEAD/evasion/antiEmulation.nim -------------------------------------------------------------------------------- /evasion/patchAMSI.nim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/adamsvoboda/nim-loader/HEAD/evasion/patchAMSI.nim -------------------------------------------------------------------------------- /evasion/patchETW.nim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/adamsvoboda/nim-loader/HEAD/evasion/patchETW.nim -------------------------------------------------------------------------------- /evasion/unhookNTDLL.nim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/adamsvoboda/nim-loader/HEAD/evasion/unhookNTDLL.nim -------------------------------------------------------------------------------- /injection/createRemoteThread.nim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/adamsvoboda/nim-loader/HEAD/injection/createRemoteThread.nim -------------------------------------------------------------------------------- /injection/processHollowing.nim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/adamsvoboda/nim-loader/HEAD/injection/processHollowing.nim -------------------------------------------------------------------------------- /injection/runPE.nim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/adamsvoboda/nim-loader/HEAD/injection/runPE.nim -------------------------------------------------------------------------------- /loader.nim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/adamsvoboda/nim-loader/HEAD/loader.nim -------------------------------------------------------------------------------- /screenshots/example.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/adamsvoboda/nim-loader/HEAD/screenshots/example.png -------------------------------------------------------------------------------- /syscalls/GetSyscallStub.nim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/adamsvoboda/nim-loader/HEAD/syscalls/GetSyscallStub.nim --------------------------------------------------------------------------------