Alternatives and similar repositories for Hooker

Users that are interested in Hooker are comparing it to the libraries listed below

• HullaBrian / COMmander
  .NET tool used to enrich RPC telemetry
  ☆101Updated 6 months ago
• ricardojoserf / NativeTokenImpersonate
  Impersonate Tokens using only NTAPI functions
  ☆83Updated 8 months ago
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆78Updated last year
• rad9800 / FileRenameJunctionsEDRDisable
  ☆159Updated last year
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆83Updated last year
• Maldev-Academy / TrapFlagForSyscalling
  Bypass user-land hooks by syscall tampering via the Trap Flag
  ☆135Updated 4 months ago
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆102Updated 8 months ago
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆80Updated 2 years ago
• warpnet / COM-Fuzzer
  Gain insights into COM/DCOM implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By…
  ☆154Updated last month
• yo-yo-yo-jbo / commandline_spoofing
  Commandline spoofing on Windows
  ☆83Updated last month
• Offensive-Panda / DV_NEW
  This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)
  ☆51Updated last year
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆50Updated last year
• deepinstinct / ShimMe
  ☆146Updated last year
• zarkones / BloodfangC2
  Modern PIC implant for Windows (64 & 32 bit)
  ☆105Updated 5 months ago
• silentwarble / PIC-Library
  A collection of position independent coding resources
  ☆104Updated last month
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆206Updated 10 months ago
• decoder-it / ChgPass
  ☆137Updated 10 months ago
• KingOfTheNOPs / Get-NetNTLM
  Internal Monologue BOF
  ☆78Updated 11 months ago
• zero2504 / EDR-GhostLocker
  AppLocker-Based EDR Neutralization
  ☆100Updated this week
• ioncodes / SilentLoad
  "Service-less" driver loading
  ☆166Updated last year
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆147Updated 2 years ago
• pulpocaminante / PPL-0day
  Demoting PPL anti-malware services to less than a guest user
  ☆66Updated 10 months ago
• whokilleddb / hoontr
  A hoontr must hoont
  ☆102Updated 3 weeks ago
• mez-0 / citadel
  A Payload Analysis Framework
  ☆112Updated 2 months ago
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆88Updated last year
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆39Updated last year
• paranoidninja / BRC4-BOF-Artillery
  ☆138Updated last month
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆52Updated 4 months ago
• pygrum / gimmick
  Section-based payload obfuscation technique for x64
  ☆64Updated last year
• naksyn / Embedder
  Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies
  ☆122Updated last year