Advanced memory evasion PoC that cyclically encrypts shellcode and fluctuates between RW/NoAccess and RX memory protections to bypass memory scanners like Moneta and PE-Sieve.
encryption shellcode windows-api code-injection hooking memory-manipulation anti-analysis thread-injection process-injection windows-security shellcode-injection payload-encryption in-memory-execution malware-evasion memory-protection edr-bypass cybersecurity-tools memory-evasion shellcode-protection memory-scanners
-
Updated
Dec 8, 2025 - C++