Sentinel-One / minhookLinks
The Minimalistic x86/x64 API Hooking Library for Windows
☆32Updated 7 years ago
Alternatives and similar repositories for minhook
Users that are interested in minhook are comparing it to the libraries listed below
Sorting:
- ☆34Updated 7 years ago
- ☆49Updated 5 years ago
- PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls☆39Updated 9 years ago
- PoC for detecting and dumping process hollowing code injection☆52Updated 6 years ago
- Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis☆45Updated 7 years ago
- Load a Windows Kernel Driver☆93Updated 8 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆58Updated 9 years ago
- ☆80Updated 7 years ago
- A simple tool to view important DLL Characteristics and change DEP and ASLR☆44Updated 6 years ago
- CAPE monitor DLLs☆41Updated 5 years ago
- Process reimaging proof of concept code☆96Updated 6 years ago
- Blog posts☆30Updated 5 years ago
- Anti-technique Codes, Detection of Anti-technique codes☆38Updated 11 years ago
- ☆45Updated 7 years ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆123Updated 4 years ago
- C++☆80Updated 8 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆19Updated 7 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆34Updated 7 years ago
- ☆26Updated 7 years ago
- DLL Injection Library & Tools☆71Updated 9 years ago
- Green shellcode challenge tools☆22Updated 6 years ago
- Windows Console Monitoring☆100Updated 7 years ago
- A tool to help malware analysts tell that the sample is injecting code into other process.☆78Updated 10 years ago
- PoC for detecting and dumping code injection (built and extended on UnRunPE)☆57Updated 6 years ago
- A simple API monitor for Windbg☆63Updated 8 years ago
- ☆50Updated 8 years ago
- A tiny PoC to inject and execute code into explorer.exe with WM_SETTEXT+WM_COPYDATA+SetThreadContext☆52Updated 7 years ago
- User-mode hook bypassing method☆33Updated 8 years ago
- Use WinDBG to trace the Windows API calls of any Portable Executable file☆31Updated 8 years ago
- PCAUSA Rawether for Windows Local Privilege Escalation☆39Updated 8 years ago