alphaSeclab / hooking

Related projects ⓘ

Alternatives and complementary repositories for hooking

• stonedreamforest / Mirage
  kernel-mode Anti-Anti-Debug plugin. based on intel vt-x && ept technology
  ☆429Updated 4 years ago
• strivexjun / XAntiDebug
  VMProtect 3.x Anti-debug Method Improved
  ☆517Updated 5 years ago
• hzqst / unicorn_pe
  Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.
  ☆787Updated 6 months ago
• wanttobeno / AntiDebuggers
  30种方法检测程序是否被调试
  ☆324Updated 5 years ago
• DragonQuestHero / Kernel-Anit-Anit-Debug-Plugins
  Kernel Anit Anit Debug Plugins 内核反反调试插件
  ☆448Updated 3 years ago
• FelixBer / FindFunc
  FindFunc is an IDA Pro plugin to find code functions that contain a certain assembly or byte pattern, reference a certain name or string,…
  ☆306Updated last month
• 0xnobody / vmpattack
  A VMP to VTIL lifter.
  ☆422Updated 3 years ago
• medigateio / ida_medigate
  Medigate plugin for c++ reverse engineering and other utils
  ☆271Updated last year
• x64dbg / Scripts
  A collection of x64dbg scripts. Feel free to submit a pull request to add your script.
  ☆500Updated 4 months ago
• VenTaz / Themidie
  x64dbg plugin to bypass Themida 3.x Anti-Debugger / VM / Monitoring programs checks (x64)
  ☆479Updated 3 years ago
• 0x3f97 / ollvm-12.x
  obfuscator-llvm 移植到llvm12.x.
  ☆231Updated last year
• sud01oo / ProcessInjection
  Some ways to inject a DLL into a alive process
  ☆353Updated 6 years ago
• alphaSeclab / injection-stuff
  PE Injection、DLL Injection、Process Injection、Thread Injection、Code Injection、Shellcode Injection、ELF Injection、Dylib Injection, including…
  ☆508Updated 4 years ago
• horsicq / stringsx64dbg
  Strings plugin for x64dbg
  ☆226Updated this week
• llxiaoyuan / oxorany
  obfuscated any constant encryption in compile time on any platform
  ☆411Updated last year
• mike1k / VMPImportFixer
  Fix VMProtect Import Protection
  ☆326Updated 3 years ago
• stonedreamforest / NaiHeQiao
  open-source x86/x64 usermode anti-anti-debug plugin
  ☆215Updated 4 years ago
• anzelesnik / SyscallHook
  System call hook for Windows 10 20H1
  ☆479Updated 3 years ago
• strivexjun / DriverInjectDll
  Using Driver Global Injection dll, it can hide DLL modules
  ☆505Updated 5 years ago
• fjqisba / VmpHelper
  an ida plugin used to decompile vmp
  ☆300Updated 4 months ago
• KuNgia09 / vmp3-import-fix
  Fix VMProtect3 IAT
  ☆260Updated 11 months ago
• 0xnobody / vmpdump
  A dynamic VMP dumper and import fixer, powered by VTIL.
  ☆1,148Updated 4 years ago
• Obfuscator-Collections / VMProtect
  VMProtect source code leak (incomplete, some important files are still missing, but you can still see it as a reference on how to virtual…
  ☆159Updated 4 months ago
• Tai7sy / vs-obfuscation
  LLVM Obfuscator / constexpr / PEB CALL API
  ☆172Updated 5 years ago
• tishion / mmLoader
  A library for loading dll module bypassing windows PE loader from memory (x86/x64)
  ☆536Updated 7 months ago
• hzqst / Syscall-Monitor
  Syscall Monitor is a system monitor program (like Sysinternal's Process Monitor) using Intel VT-X/EPT for Windows7+
  ☆721Updated 7 years ago
• RolfRolles / HexRaysDeob
  Hex-Rays microcode API plugin for breaking an obfuscating compiler
  ☆730Updated 3 years ago
• emc2314 / YANSOllvm
  Yet Another Not So Obfuscated LLVM
  ☆368Updated 5 months ago
• zhuhuibeishadiao / NewHideDriverEx
  Hide Driver By MiProcessLoaderEntry
  ☆280Updated 5 years ago