Open issues targeted: make static infection return to the original entry point, add code-cave injection and header slack checks, fix process enumeration, and introduce APC/syscall techniques with stronger runtime obfuscation.

• Static infection path
  • default to code-cave injection with entrypoint trampoline and signature guard
  • optional section-based infection with header slack validation and clearer failure paths
• Injection techniques
  • add --technique selector for CRT/APC/syscall paths with graceful fallbacks
  • APC queue support and syscall-backed memory ops with Nt* resolution
• Runtime obfuscation
  • replace XOR-only payloads with XTEA-CTR runtime decryption for stubs/message
  • unify message/stub construction behind decrypt+patch helpers
• CLI/Docs
  • document techniques and options, improve usage help output

Example (new CLI flow):

injector.exe --technique apc --section