Alternatives and similar repositories for TrampHook:

Users that are interested in TrampHook are comparing it to the libraries listed below

• ZeroMemoryEx / SleepKiller
  Bypass Malware Time Delays
  ☆100Updated 2 years ago
• ZeroMemoryEx / Hooks_Hunter
  Detect API Hooks
  ☆73Updated 2 years ago
• 0x00Jeff / BetterGetProcAddress
  POC of a better implementation of GetProcAddress for ntdll using binary search
  ☆94Updated 9 months ago
• NUL0x4C / GP
  using the gpu to hide your payload
  ☆53Updated 2 years ago
• Hemogl0bin / drvscanner
  Scan for potentially vulnerable drivers
  ☆84Updated 2 years ago
• rad9800 / VehApiResolve
  ☆105Updated 2 years ago
• iilegacyyii / ExportDumper
  A small tool I made to dump the export table of PE files. The primary use case was intended for use within DLL proxying.
  ☆69Updated 2 years ago
• ZeroMemoryEx / KasperskyHook
  Hook system calls on Windows by using Kaspersky's hypervisor
  ☆11Updated last month
• SaadAhla / BlockNonMSModules
  Set the process mitigation policy for loading only Microsoft Modules , and block any userland 3rd party modules
  ☆42Updated last year
• realoriginal / bootdoor
  An initial proof of concept of a bootkit based on Cr4sh's DMABackdoorBoot
  ☆61Updated last year
• AzAgarampur / PsForge
  Process Hollowing demonstration & explanation
  ☆34Updated 3 years ago
• loneicewolf / smbdoor
  improving zerosums smbdoor - a silent remote backdoor which abuses undoc. APIs in srvnet.sys
  ☆49Updated last year
• ZeroMemoryEx / URootkit
  user-mode Rootkit
  ☆102Updated 2 years ago
• ZeroMemoryEx / Shellcode-Injector
  x64/x86 shellcode injector
  ☆113Updated 2 years ago
• ReCryptLLC / CVE-2022-42045
  ☆37Updated last year
• hasherezade / shellc_encoder
  Standalone Metasploit-like XOR encoder for shellcode
  ☆46Updated 8 months ago
• MastMind / PE-infector
  Crossplatform tool for inject shellcode into .exe and .dll binaries (x86 and x64)
  ☆57Updated 8 months ago
• alfarom256 / MCP-PoC
  Minifilter Callback Patching Proof-of-Concept
  ☆64Updated 2 years ago
• knight0x07 / BumbleCrypt
  A Bumblebee-inspired Crypter
  ☆80Updated 2 years ago
• ZeroMemoryEx / Tokenizer
  Kernel Mode Driver for Elevating Process Privileges
  ☆131Updated last year
• gabriellandau / ShadowStackWalk
  Finding Truth in the Shadows
  ☆88Updated 2 years ago
• Allevon412 / ReflectiveDLLInjector
  This program is used to perform reflective DLL Injection to a remote process specified by the user.
  ☆64Updated last year
• trickster0 / CReadMemory
  Read Memory without ReadProcessMemory for Current Process
  ☆75Updated 2 years ago
• rbmm / NtDetours
  Detours implementation (x64/x86) which used only ntdll import
  ☆89Updated 7 months ago
• maziland / StackBombing
  Next gen process injection technique
  ☆44Updated 4 years ago
• veil-ivy / kapc_injector
  kernel to user mode APC injector
  ☆44Updated 2 years ago
• GetRektBoy724 / SyscallShuffler
  Your NTDLL vaccine from modern direct syscall methods.
  ☆35Updated 2 years ago
• Idov31 / UdpInspector
  Listing UDP connections with remote address without sniffing.
  ☆30Updated last year
• whokilleddb / A-Study-in-Obfuscation
  A Study in Obfuscation: Analyzing the effect of various techniques to bypass AV engines
  ☆41Updated 2 years ago
• XaFF-XaFF / ZwProcessHollowing
  ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption
  ☆81Updated last year