Zer0Mem0ry / APIHook
A Simple dynamic library to demonstrate IAT API hooking on Windows NT.
☆87Updated 8 years ago
Alternatives and similar repositories for APIHook:
Users that are interested in APIHook are comparing it to the libraries listed below
- A simple program to scan for open handles in a process.☆62Updated 8 years ago
- Hidden kernel mode code execution for bypassing modern anti-rootkits.☆83Updated 14 years ago
- This is a simple mutation engine. It does not have many features and you have to add actual mutation, when you want to use it - It does m…☆34Updated 7 years ago
- Disable Driver Callbacks☆102Updated 7 years ago
- PE permutation library☆273Updated 2 years ago
- Al-khaser is a PoC malware with good intentions that aimes to stress your malware analysis / sandbox environement☆32Updated 10 years ago
- Intercepting DeviceControl via WPP☆133Updated 5 years ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆75Updated 14 years ago
- BattlEye x64 usermode injector☆65Updated 6 years ago
- Manual PE image mapper☆64Updated 11 years ago
- Elevate a process to be a protected process☆149Updated 5 years ago
- disable most common windowsx64 systems patchguard☆84Updated 6 years ago
- Capcom wrapper with safety in mind.☆79Updated 6 years ago
- Windows driver including couple different techniques for file removal when regular operation isn't possible.☆69Updated 9 years ago
- Example Windows Kernel-mode Driver which enumerates running processes.☆55Updated 2 years ago
- Code injection by hijacking threads in Windows 32-bit applications☆43Updated 6 years ago
- x64 syscall caller in C++.☆89Updated 6 years ago
- A simple project to demonstrate function hooking / detouring☆127Updated 8 years ago
- Windows Driver Kit Extesion Header (Undoc)☆136Updated 3 years ago
- Windows Kernel Driver dlls injector using APC☆61Updated 6 years ago
- Windows Manipulation Library (x64, User/Kernelmode)☆77Updated 6 years ago
- Communication via callback☆73Updated 5 years ago
- Hiding x32/x64 Modules/DLLs using PEB☆62Updated 9 years ago
- windows kernelmode and usermode IAT hook☆146Updated 4 years ago
- Abusing SpeedFan driver ability of physical memory manipulation☆110Updated 7 years ago
- x64 usermode rootkit☆203Updated 7 years ago
- Recreation of GetProcAddress without external dependencies on Windows Libraries☆90Updated 9 years ago
- A documented Windows x64 bit Usermode Injector that works via hooking IAT and hijacking its threads to execute shellcode.☆64Updated last year
- Kernel mode driver loader, injecting into the windows kernel, Rootkit. Driver injections.☆48Updated 10 years ago
- Anti-Anti-VM solution via Windows Driver☆57Updated 6 years ago