S3cur3Th1sSh1t/SharpUnhooker external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

S3cur3Th1sSh1t/SharpUnhooker

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/S3cur3Th1sSh1t/SharpUnhooker)

Close

S3cur3Th1sSh1t / SharpUnhookerView on GitHubMore

• External links
• Readme badge

C# Based Universal API Unhooker - Automatically Unhook API Hives (ntdll.dll,kernel32.dll,user32.dll,and kernelbase.dll)

☆25Mar 7, 2023Updated 3 years ago

Alternatives and similar repositories for SharpUnhooker

Users that are interested in SharpUnhooker are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• S3cur3Th1sSh1t / SyscallAmsiScanBufferBypass

  View on GitHub
  AmsiScanBufferBypass using D/Invoke
  ☆136Jun 17, 2021Updated 4 years ago
• S3cur3Th1sSh1t / RDPThiefInject

  View on GitHub
  RDPThief donut shellcode inject into mstsc
  ☆88May 24, 2021Updated 4 years ago
• ZephrFish / SandboxSpy

  View on GitHub
  Code for profiling sandboxes - Initially an idea to profile sandboxes, the code is written to take enviromental variables and send them b…
  ☆30Dec 7, 2025Updated 3 months ago
• S3cur3Th1sSh1t / LDAP-Signing-Scanner

  View on GitHub
  A little scanner to check the LDAP Signing state
  ☆46Aug 2, 2021Updated 4 years ago
• h3xstream / waf-workshop

  View on GitHub
  ☆16Oct 30, 2022Updated 3 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• S3cur3Th1sSh1t / Invoke-SharpLoader

  View on GitHub
  ☆361Apr 24, 2021Updated 4 years ago
• WithSecureLabs / AMSIDetection

  View on GitHub
  AMSI detection PoC
  ☆31Apr 14, 2020Updated 5 years ago
• S3cur3Th1sSh1t / SharpImpersonation

  View on GitHub
  A User Impersonation tool - via Token or Shellcode injection
  ☆423May 21, 2022Updated 3 years ago
• rbmm / ARL

  View on GitHub
  ☆24Feb 1, 2025Updated last year
• cocomelonc / 2022-04-02-malware-injection-18

  View on GitHub
  Find kernel32 base and API addresses. Simple C++ implementation
  ☆23Apr 7, 2022Updated 3 years ago
• earthquake / Socks5Server

  View on GitHub
  Windows C/C++ Socks5 Server
  ☆88Jan 3, 2023Updated 3 years ago
• Helixo32 / GetSystem-LCI

  View on GitHub
  GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…
  ☆36Nov 24, 2024Updated last year
• jonny-jhnson / JonMon-Lite

  View on GitHub
  ☆48Jun 6, 2025Updated 9 months ago
• HulkOperator / CallStackSpoofer

  View on GitHub
  ☆65Dec 19, 2024Updated last year
• Wordpress hosting with auto-scaling on Cloudways • Ad
  Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
• S3cur3Th1sSh1t / Sharp-HackBrowserData

  View on GitHub
  C# binary with embeded golang hack-browser-data
  ☆100Dec 9, 2021Updated 4 years ago
• MythicC2Profiles / httpx

  View on GitHub
  Configurable, Community driven, HTTP C2 Profile
  ☆28Feb 16, 2026Updated last month
• SECFORCE / SharpWhispers

  View on GitHub
  C# porting of SysWhispers2. It uses SharpASM to find the code caves for executing the system call stub.
  ☆111Apr 14, 2023Updated 2 years ago
• jfmaes / blogposts-talks-and-tidbits

  View on GitHub
  all random stuff that dont warrant a seperate repo
  ☆12Sep 2, 2022Updated 3 years ago
• kartikdurg / Enum-LSASS

  View on GitHub
  LSASS enumeration like pypykatz written in C-Lang
  ☆20Dec 1, 2021Updated 4 years ago
• NVISOsecurity / cobalt-strike-notifier

  View on GitHub
  ☆13Jul 30, 2021Updated 4 years ago
• dosxuz / TradecraftImrprovement

  View on GitHub
  This repository will contain source codes from the Tradecraft improvement blog series
  ☆15Mar 27, 2025Updated last year
• o1mate / DLLProx

  View on GitHub
  Automatic DLL comment link generation and explaination of the DLL Proxying techniques
  ☆10Aug 19, 2021Updated 4 years ago
• OsandaMalith / WindowsInternals

  View on GitHub
  Experiments on the Windows Internals
  ☆31Sep 22, 2019Updated 6 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• cocomelonc / 2022-01-24-malware-injection-15

  View on GitHub
  Process injection via KernelCallbackTable
  ☆13Jan 28, 2022Updated 4 years ago
• Helixo32 / NimReflectiveLoader

  View on GitHub
  NimReflectiveLoader is a Nim-based tool for in-memory DLL execution using Reflective DLL Loading.
  ☆31Jan 21, 2024Updated 2 years ago
• S3cur3Th1sSh1t / MultiPotato

  View on GitHub
  ☆538Nov 20, 2021Updated 4 years ago
• TheWover / ProcessManager

  View on GitHub
  ps-like .NET Assembly for enumerating processes on the current machine or a remote machine.
  ☆13Aug 12, 2019Updated 6 years ago
• oXis / NimWinAPICustom

  View on GitHub
  Resolve WinAPI func. Custom GetProcAddress and GetModuleHandle written in Nim
  ☆32Jun 2, 2021Updated 4 years ago
• timwhitez / Spoofing-Gate

  View on GitHub
  (Hellsgate|Halosgate|Tartarosgate)+Spoofing-Gate. Ensures that all systemcalls go through ntdll.dll
  ☆45Mar 9, 2022Updated 4 years ago
• S3cur3Th1sSh1t / xencrypt

  View on GitHub
  A PowerShell script anti-virus evasion tool
  ☆18Jan 3, 2021Updated 5 years ago
• xforcered / GetWebDAVStatus

  View on GitHub
  Determine if the WebClient Service (WebDAV) is running on a remote system
  ☆27Sep 29, 2021Updated 4 years ago
• xelemental / Mal-LNK-Generator

  View on GitHub
  ☆38Mar 28, 2025Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• whokilleddb / SOAPHound

  View on GitHub
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆32May 30, 2024Updated last year
• shantanu561993 / GolanginCsharp

  View on GitHub
  Project to use Golang inside C#
  ☆80Jun 5, 2020Updated 5 years ago
• MythicC2Profiles / http

  View on GitHub
  Simple HTTP async comms using standard GET/POST requests
  ☆49Feb 5, 2026Updated last month
• laxa / SharpSecretsdump

  View on GitHub
  Secretsdump C# version only supporting local (live) operation
  ☆55Apr 20, 2025Updated 11 months ago
• MaorSabag / Paruns-Fart

  View on GitHub
  Just another ntdll unhooking using Parun's Fart technique
  ☆76Feb 15, 2023Updated 3 years ago
• GetRektBoy724 / NiceTryDLL

  View on GitHub
  Nice try reading NTDLL from disk, nerd.
  ☆19Apr 18, 2022Updated 3 years ago
• Hagrid29 / RemotePatcher

  View on GitHub
  Patch AMSI and ETW in remote process via direct syscall
  ☆85Apr 28, 2022Updated 3 years ago