Kara-4search/HookDetection_CSharp external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Kara-4search/HookDetection_CSharp

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Kara-4search/HookDetection_CSharp)

Close

Kara-4search / HookDetection_CSharpView on GitHubMore

• External links
• Readme badge

HookDetection

☆45Sep 3, 2021Updated 4 years ago

Alternatives and similar repositories for HookDetection_CSharp

Users that are interested in HookDetection_CSharp are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Kara-4search / MappingInjection_CSharp

  View on GitHub
  MappingInjection via csharp
  ☆40Nov 19, 2021Updated 4 years ago
• Kara-4search / PEB-PPIDspoofing_Csharp

  View on GitHub
  Command line & PPID spoofing
  ☆30Apr 15, 2023Updated 3 years ago
• Kara-4search / NewNtdllBypassInlineHook_CSharp

  View on GitHub
  Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.
  ☆62Sep 6, 2021Updated 4 years ago
• Kara-4search / HellgateLoader_CSharp

  View on GitHub
  Load shellcode via HELLGATE, Rewrite hellgate with .net framework for learning purpose.
  ☆18Jan 21, 2022Updated 4 years ago
• Kara-4search / ProcessHollowing_CSharp

  View on GitHub
  ProcessHollowing via csharp
  ☆13Dec 21, 2021Updated 4 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• Kara-4search / Fiber_ShellcodeExecution

  View on GitHub
  Using fibers to execute shellcode in a local process via csharp
  ☆28Jan 2, 2022Updated 4 years ago
• Kara-4search / BypassETW_CSharp

  View on GitHub
  Bypassing ETW with Csharp
  ☆27Oct 28, 2021Updated 4 years ago
• Kara-4search / EarlyBirdInjection_CSharp

  View on GitHub
  Inject shellcode into process via "EarlyBird"
  ☆27Aug 30, 2021Updated 4 years ago
• Kara-4search / BypassAMSI_CSharp

  View on GitHub
  Bypass AMSI
  ☆13Aug 8, 2021Updated 4 years ago
• Kara-4search / DInvoke_shellcodeload_CSharp

  View on GitHub
  ShellCodeLoader via DInvoke
  ☆59Jul 5, 2021Updated 4 years ago
• S3cur3Th1sSh1t / Nim_CBT_Shellcode

  View on GitHub
  CallBack-Techniques for Shellcode execution ported to Nim
  ☆61Mar 19, 2021Updated 5 years ago
• Kara-4search / Simple_ShellCodeLoader_CSharp

  View on GitHub
  A Simple ShellcodeLoader
  ☆11Jun 4, 2021Updated 4 years ago
• Kara-4search / ThreadHijacking_CSharp

  View on GitHub
  Process inject technique "Thread hijacking" via csharp
  ☆15Dec 18, 2021Updated 4 years ago
• Kara-4search / SysCall_ShellcodeLoad_Csharp

  View on GitHub
  Load shellcode via syscall
  ☆56Jul 28, 2021Updated 4 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• XTeam-Wing / WingKit

  View on GitHub
  CobaltStrike Extentions
  ☆40Oct 24, 2021Updated 4 years ago
• ChaitanyaHaritash / NIM-Scripts

  View on GitHub
  ☆18Aug 19, 2021Updated 4 years ago
• GetRektBoy724 / SharpHalos

  View on GitHub
  My implementation of Halo's Gate technique in C#
  ☆55Apr 20, 2022Updated 4 years ago
• paranoidninja / Process-Instrumentation-Syscall-Hook

  View on GitHub
  A simple program to hook the current process to identify the manual syscall executions on windows
  ☆268Nov 18, 2022Updated 3 years ago
• Hagrid29 / BOF-RemoteRegSave

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses RegConnectRegistryA + RegOpenKeyExA API to dump registry hives on remote computer
  ☆18Mar 4, 2023Updated 3 years ago
• fortra / hw-call-stack

  View on GitHub
  Use hardware breakpoints to spoof the call stack for both syscalls and API calls
  ☆203Jun 6, 2024Updated last year
• bananabr / CLRInjector

  View on GitHub
  A PoC .NET-specific process injection tool
  ☆58Mar 17, 2024Updated 2 years ago
• Dump-GUY / Get-PDInvokeImports

  View on GitHub
  Get-PDInvokeImports is tool (PowerShell module) which is able to perform automatic detection of P/Invoke, Dynamic P/Invoke and D/Invoke u…
  ☆54Apr 10, 2022Updated 4 years ago
• NVISOsecurity / DInvisibleRegistry

  View on GitHub
  DInvisibleRegistry
  ☆83Nov 20, 2020Updated 5 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• S3cur3Th1sSh1t / NimWinstaEveryoneAccess

  View on GitHub
  ☆10Jan 17, 2022Updated 4 years ago
• Kara-4search / WindowsEventLogsBypass_Csharp

  View on GitHub
  Bypass windows eventlogs & Sysmon
  ☆20Aug 24, 2021Updated 4 years ago
• gam4er / SneakyRun

  View on GitHub
  Some stuff for PHD2021
  ☆14May 21, 2025Updated 11 months ago
• roberreigada / LsassUnhooker

  View on GitHub
  Little program written in C# to bypass EDR hooks and dump the content of the lsass process
  ☆61Jun 24, 2021Updated 4 years ago
• IkerSaint / KingHamlet

  View on GitHub
  Process Ghosting Tool
  ☆176Jun 22, 2021Updated 4 years ago
• sbasu7241 / HellsGate

  View on GitHub
  Rewrote HellsGate in C# for fun and learning
  ☆86Feb 10, 2022Updated 4 years ago
• expl0itabl3 / uac-bypass-cmstp

  View on GitHub
  Use CMSTP.exe to bypass UAC.
  ☆52Jun 24, 2022Updated 3 years ago
• S3cur3Th1sSh1t / SyscallAmsiScanBufferBypass

  View on GitHub
  AmsiScanBufferBypass using D/Invoke
  ☆136Jun 17, 2021Updated 4 years ago
• deepinstinct / AMSI-Unchained

  View on GitHub
  Unchain AMSI by patching the provider’s unmonitored memory space
  ☆91Nov 24, 2022Updated 3 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• hausec / Set-RBCDBytes

  View on GitHub
  ☆18Nov 24, 2020Updated 5 years ago
• passthehashbrowns / BOFMask

  View on GitHub
  ☆131Jun 28, 2023Updated 2 years ago
• icyguider / LatLoader

  View on GitHub
  PoC module to demonstrate automated lateral movement with the Havoc C2 framework.
  ☆313Dec 9, 2023Updated 2 years ago
• RedCursorSecurityConsulting / SharpHashSpray

  View on GitHub
  An execute-assembly compatible tool for spraying local admin hashes on an Active Directory domain.
  ☆18Apr 30, 2021Updated 5 years ago
• GetRektBoy724 / TripleS

  View on GitHub
  Extracting Syscall Stub, Modernized
  ☆65Apr 2, 2022Updated 4 years ago
• S3cur3Th1sSh1t / SharpNamedPipePTH

  View on GitHub
  Pass the Hash to a named pipe for token Impersonation
  ☆310Nov 29, 2023Updated 2 years ago
• garrettfoster13 / CVE-2025-59501

  View on GitHub
  CVE-2025-59501 POC code
  ☆26Nov 20, 2025Updated 5 months ago