S3cur3Th1sSh1t/SharpUnhooker external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

S3cur3Th1sSh1t/SharpUnhooker

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/S3cur3Th1sSh1t/SharpUnhooker)

Close

S3cur3Th1sSh1t / SharpUnhookerView on GitHubMore

• External links
• Readme badge

C# Based Universal API Unhooker - Automatically Unhook API Hives (ntdll.dll,kernel32.dll,user32.dll,and kernelbase.dll)

☆24Mar 7, 2023Updated 3 years ago

Alternatives and similar repositories for SharpUnhooker

Users that are interested in SharpUnhooker are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• S3cur3Th1sSh1t / SyscallAmsiScanBufferBypass

  View on GitHub
  AmsiScanBufferBypass using D/Invoke
  ☆136Jun 17, 2021Updated 5 years ago
• S3cur3Th1sSh1t / RDPThiefInject

  View on GitHub
  RDPThief donut shellcode inject into mstsc
  ☆88May 24, 2021Updated 5 years ago
• kapla0011 / InsomniacUnwindingCrossProcess

  View on GitHub
  Surgical UNWIND_INFO preservation for sleep masking without call stack spoofing.
  ☆55Mar 30, 2026Updated 2 months ago
• ZephrFish / SandboxSpy

  View on GitHub
  Code for profiling sandboxes - Initially an idea to profile sandboxes, the code is written to take enviromental variables and send them b…
  ☆30Dec 7, 2025Updated 6 months ago
• S3cur3Th1sSh1t / LDAP-Signing-Scanner

  View on GitHub
  A little scanner to check the LDAP Signing state
  ☆46Aug 2, 2021Updated 4 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• h3xstream / waf-workshop

  View on GitHub
  ☆17Oct 30, 2022Updated 3 years ago
• S3cur3Th1sSh1t / Invoke-SharpLoader

  View on GitHub
  ☆362Apr 24, 2021Updated 5 years ago
• WithSecureLabs / AMSIDetection

  View on GitHub
  AMSI detection PoC
  ☆31Apr 14, 2020Updated 6 years ago
• S3cur3Th1sSh1t / SharpImpersonation

  View on GitHub
  A User Impersonation tool - via Token or Shellcode injection
  ☆424May 21, 2022Updated 4 years ago
• rbmm / ARL

  View on GitHub
  ☆24Feb 1, 2025Updated last year
• cocomelonc / 2022-04-02-malware-injection-18

  View on GitHub
  Find kernel32 base and API addresses. Simple C++ implementation
  ☆24Apr 7, 2022Updated 4 years ago
• earthquake / Socks5Server

  View on GitHub
  Windows C/C++ Socks5 Server
  ☆89Jan 3, 2023Updated 3 years ago
• Helixo32 / GetSystem-LCI

  View on GitHub
  GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…
  ☆36Nov 24, 2024Updated last year
• jonny-jhnson / JonMon-Lite

  View on GitHub
  ☆51Jun 6, 2025Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• S3cur3Th1sSh1t / Sharp-HackBrowserData

  View on GitHub
  C# binary with embeded golang hack-browser-data
  ☆100Dec 9, 2021Updated 4 years ago
• HulkOperator / CallStackSpoofer

  View on GitHub
  ☆71Dec 19, 2024Updated last year
• MythicC2Profiles / httpx

  View on GitHub
  Configurable, Community driven, HTTP C2 Profile
  ☆28Jun 11, 2026Updated last week
• SECFORCE / SharpWhispers

  View on GitHub
  C# porting of SysWhispers2. It uses SharpASM to find the code caves for executing the system call stub.
  ☆112Apr 14, 2023Updated 3 years ago
• jfmaes / blogposts-talks-and-tidbits

  View on GitHub
  all random stuff that dont warrant a seperate repo
  ☆12Sep 2, 2022Updated 3 years ago
• kartikdurg / Enum-LSASS

  View on GitHub
  LSASS enumeration like pypykatz written in C-Lang
  ☆20Dec 1, 2021Updated 4 years ago
• NVISOsecurity / cobalt-strike-notifier

  View on GitHub
  ☆13Jul 30, 2021Updated 4 years ago
• dosxuz / TradecraftImrprovement

  View on GitHub
  This repository will contain source codes from the Tradecraft improvement blog series
  ☆14Mar 27, 2025Updated last year
• o1mate / DLLProx

  View on GitHub
  Automatic DLL comment link generation and explaination of the DLL Proxying techniques
  ☆10Aug 19, 2021Updated 4 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• OsandaMalith / WindowsInternals

  View on GitHub
  Experiments on the Windows Internals
  ☆31Sep 22, 2019Updated 6 years ago
• cocomelonc / 2022-01-24-malware-injection-15

  View on GitHub
  Process injection via KernelCallbackTable
  ☆13Jan 28, 2022Updated 4 years ago
• Helixo32 / NimReflectiveLoader

  View on GitHub
  NimReflectiveLoader is a Nim-based tool for in-memory DLL execution using Reflective DLL Loading.
  ☆30Jan 21, 2024Updated 2 years ago
• S3cur3Th1sSh1t / MultiPotato

  View on GitHub
  ☆536Nov 20, 2021Updated 4 years ago
• TheWover / ProcessManager

  View on GitHub
  ps-like .NET Assembly for enumerating processes on the current machine or a remote machine.
  ☆13Aug 12, 2019Updated 6 years ago
• timwhitez / Spoofing-Gate

  View on GitHub
  (Hellsgate|Halosgate|Tartarosgate)+Spoofing-Gate. Ensures that all systemcalls go through ntdll.dll
  ☆45Mar 9, 2022Updated 4 years ago
• oXis / NimWinAPICustom

  View on GitHub
  Resolve WinAPI func. Custom GetProcAddress and GetModuleHandle written in Nim
  ☆33Jun 2, 2021Updated 5 years ago
• cocomelonc / aiya_mmd_book

  View on GitHub
  Attack and introduction (info stealer), start your adventure in MMD
  ☆20Sep 14, 2025Updated 9 months ago
• S3cur3Th1sSh1t / xencrypt

  View on GitHub
  A PowerShell script anti-virus evasion tool
  ☆18Jan 3, 2021Updated 5 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• xforcered / GetWebDAVStatus

  View on GitHub
  Determine if the WebClient Service (WebDAV) is running on a remote system
  ☆28Sep 29, 2021Updated 4 years ago
• xelemental / Mal-LNK-Generator

  View on GitHub
  ☆39Mar 28, 2025Updated last year
• whokilleddb / SOAPHound

  View on GitHub
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆32May 30, 2024Updated 2 years ago
• shantanu561993 / GolanginCsharp

  View on GitHub
  Project to use Golang inside C#
  ☆81Jun 5, 2020Updated 6 years ago
• MythicC2Profiles / http

  View on GitHub
  Simple HTTP async comms using standard GET/POST requests
  ☆50Feb 5, 2026Updated 4 months ago
• laxa / SharpSecretsdump

  View on GitHub
  Secretsdump C# version only supporting local (live) operation
  ☆56Apr 20, 2025Updated last year
• MaorSabag / Paruns-Fart

  View on GitHub
  NTDLL unhooking via Parun's Fart technique to bypass EDR userland hooks
  ☆75Feb 15, 2023Updated 3 years ago