Home Arsenal Malware Development Process Hollowing Injector (C)
Process Hollowing Injector (C)
Versionv1.3
Difficulty Intermediate
Updated2025-03-15
CategoryMalware Development

Process Hollowing Injector (C)

$89.99

Process Hollowing — Shellcode Injector in C

Clean and documented implementation of the process hollowing for code injection in Windows:

  • C source code — CreateProcess(SUSPENDED) → NtUnmapViewOfSection → VirtualAllocEx → WriteProcessMemory → ResumeThread.
  • x86/x64 Support — Automatic architecture detection of the target process and ajuste of injection.
  • Recommended target processes — Lista of legitimate Windows processes that are good candidates (svchost.exe, RuntimeBroker.exe, etc.).
  • Shellcode loader — Function wrapper that accepts shellcode raw as input (compatible with msfvenom, Cobalt Strike, Sliver).
  • Compilation — Makefile for MinGW and Visual Studio. Compila a standalone executable without externall dependsncies.

Note: This is the base technique. For EDR evasion, combine with the direct syscall and unhooking pieces from the Evasion category.

Add to Cart Buy Now

Related Tools

Reflective DLL Injection Template
Malware Development

Reflective DLL Injection Template

$129.99
Python RAT Core Module
Malware Development

Python RAT Core Module

$39.99
Shellcode Encoder x86/x64
Malware Development

Shellcode Encoder x86/x64

$69.99
Windows Rootkit Driver (KMDF)
Malware Development

Windows Rootkit Driver (KMDF)

$599.99