Alternatives and similar repositories for KasperskyHook:

Users that are interested in KasperskyHook are comparing it to the libraries listed below

• buzzer-re / BulletTrain
  A manual PE mapping implementation, aka reflective loader
  ☆19Updated 2 years ago
• ZeroMemoryEx / TrampHook
  Simple x86 Trampoline Hook
  ☆40Updated 2 years ago
• ManulMap / malstring
  Using c++23 compile-time magic to produce obfuscated PIC strings and arrays.
  ☆21Updated 10 months ago
• Anal-Repair / gigabyte_gdrv3_exploit
  Rust program for interfacing with the gigabyte driver to gain access to powerful primitives such as arbitrary kernel memcpy.
  ☆17Updated 2 years ago
• NUL0x4C / RecycleBinPersistence
  using the Recycle Bin to insure persistence
  ☆12Updated 2 years ago
• ZeroMemoryEx / Hooks_Hunter
  Simple API Hooks detector
  ☆73Updated 2 years ago
• 1hAck-0 / zeroimport
  ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel drive…
  ☆48Updated 2 years ago
• samshine / ScyllaHideDetector2
  Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.
  ☆25Updated 5 years ago
• ioncodes / pooldump
  ☆29Updated 3 years ago
• backengineering / msrexec
  Elevate arbitrary MSR writes to kernel execution.
  ☆33Updated last year
• benheise / bootkit
  UEFI bootkit: Hardware Implant. In-Progress
  ☆13Updated 3 years ago
• cocomelonc / 2022-01-14-malware-injection-13
  Code injection via ZwCreateSection, ZwUnmapViewOfSection. C++ example
  ☆17Updated 3 years ago
• Idov31 / UdpInspector
  Listing UDP connections with remote address without sniffing.
  ☆29Updated last year
• Lima-X / Win32.Nebula
  A packed & protected Module Loader and more, for 64-bit Windows
  ☆29Updated 4 years ago
• boom-cr3 / NotifyRoutineHijackThread
  Hijack NotifyRoutine for a kernelmode thread
  ☆41Updated 2 years ago
• lennyRBLX / ret_addr_spoofer
  Compileable POC of namazso's x64 return address spoofer.
  ☆51Updated 4 years ago
• alfarom256 / drivers_and_shit
  ☆59Updated 2 years ago
• kkent030315 / anyelevate
  x64 Windows privilege elevation using anycall
  ☆21Updated 3 years ago
• Rycooop / Callback-Registration
  Register a callback from a Manually mapped kernel module
  ☆16Updated 3 years ago
• benheise / KUCSharedMemory
  Kernel<->Usermode shared memory communcation using manually mapped driver
  ☆16Updated 3 years ago
• veil-ivy / kapc_injector
  kernel to user mode APC injector
  ☆44Updated 3 years ago
• muturikaranja / kernel-windowless-wndproc-hook
  hooks gServerHandlers xxxEventWndProc
  ☆13Updated 2 years ago
• AlSch092 / ModifyExports
  Research of modifying exported function names at runtime (C/C++, Windows)
  ☆17Updated 10 months ago
• d35ha / PEReflectiveInjection
  Remote PE reflective injection with a simple reflective loader
  ☆31Updated 5 years ago
• TRIKbranch / RunPE-X86--X64-
  With this RunPE you can easily inject your payload in any x86 or x64 program.
  ☆13Updated 5 years ago
• MahmoudZohdy / Anti-Analysis-DebuggerInjection
  Anti-Analysis technique, trick the debugger by Hiding events from it.
  ☆19Updated 3 years ago
• mathisvickie / CVE-2021-27965
  stack based buffer overflow in MsIo64.sys, Proof of Concept Local Privilege Escalation to nt authority/system
  ☆11Updated 3 years ago
• ByteWhite1x1 / PatchGuardResearch
  Bypassing kernel patch protection runtime
  ☆20Updated 2 years ago
• 0mWindyBug / PnpNotifyResearch
  a driver to enumerate registered pnp callbacks for a particular interface class based on reversal of IoRegisterPlugPlayNotification
  ☆11Updated last year
• 1401199262 / InstrumentationCallback
  ☆27Updated 2 years ago