Alternatives and similar repositories for codecave-hook

Users that are interested in codecave-hook are comparing it to the libraries listed below

• idkhidden / winapipatcher
  WinApi Patcher is a straightforward tool leveraging windows API hooking to patch and modify certain behaviors in a targeted environment.
  ☆44Updated last year
• li4321 / GhostInjector
  ☆48Updated 8 months ago
• SurgeGotTappedAgain / Window-Hijack
  ☆61Updated 2 years ago
• SkarSys / windows-kernel-trojan
  A windows kernel mode driver that spoofs serial numbers when mapped and executes a malicious payload (FULLY from kernel!!!)
  ☆33Updated 11 months ago
• crvvdev / vac-bypass-kernel
  Fully working kernel-mode VAC bypass
  ☆86Updated 7 months ago
• benheise / KUCSharedMemory
  Kernel<->Usermode shared memory communcation using manually mapped driver
  ☆23Updated 3 years ago
• SamuelTulach / MemoryGuard
  Experiment with PAGE_GUARD protection to hide memory from other processes
  ☆51Updated last year
• SwenenzY / section-obfuscation
  PE Header (.rdata,.data,.text) obsfucation
  ☆37Updated 3 years ago
• 0mWindyBug / DataptrHooks
  ntoskrnl .data hooks for UM-KM communication
  ☆51Updated last year
• paysonism / payson-ioctl-cheat-driver
  Read and Write process memory with this ioctl driver base. This is great for free cheats and learning kernel.
  ☆128Updated last year
• Sherman0236 / XorData
  A C++17 framework designed to enable obfuscation of constants, variables, and strings.
  ☆22Updated last year
• NotRequiem / antidbg
  C/C++ antidebugging library for Windows
  ☆38Updated last month
• MmCopyMemory / temp-spoof
  a always updated and undetected temp spoof driver
  ☆27Updated 6 months ago
• Legcsnaec / driverMapper
  An Unsigned Driver Mapper for Windows 10 22H2 -> Windows 11 23H2 that uses PdFwKrnl to exploit the Read/Write IOCTL Calls to disable DSE …
  ☆13Updated last year
• DErDYAST1R / EfiGuardUsermodeLoader
  This is an EfiGuard BootLoader that can boot EfiGuard from Usermode with no USB or Setup as a Single Executable with automatic File Dumpi…
  ☆61Updated last week
• Oliver-1-1 / ModuleSpoof
  ☆82Updated last year
• VollRagm / ShellcodeBakery
  A simple tool to assemble shellcode ready to be copy-pasted into code
  ☆68Updated 3 years ago
• 0mWindyBug / KernelInjector
  PoC kernel to usermode injection
  ☆87Updated last year
• 4l3x777 / dse_pg_bypass
  DSE & PG bypass via BYOVD attack
  ☆64Updated 2 months ago
• samshine / ScyllaHideDetector2
  Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.
  ☆26Updated 6 years ago
• paysonism / Payson-Injector
  A kernel injector for EAC and BE
  ☆133Updated last year
• 0mWindyBug / GhostMapperUM
  manual map unsigned driver over signed memory
  ☆202Updated last year
• justvmexit / dumpr
  Dumping processes using a kernel-mode driver.
  ☆20Updated 3 years ago
• DErDYAST1R / NmiCallbackBlocker
  Kernel Level NMI Callback Blocker
  ☆123Updated last week
• DErDYAST1R / SilentFunctionCaller
  Allows for same-file KernelMode function execution using Encrypted addresses of Functions
  ☆46Updated last week
• hotline1337 / jobject
  proof of concept of user-mode anti-breakpoint technique
  ☆16Updated 2 years ago
• nelfo / PGHooker
  PAGE_GUARD based hooking library
  ☆52Updated 3 years ago
• Flerov / TS-Changer
  TS-Changer - Forces the machine in/out of TestSigning Mode at runtime.
  ☆64Updated 2 years ago
• Leksa667 / Vulnerable-Driver-Manual-Mapper
  This repository contains C++ code to load custom drivers by exploiting a vulnerable driver in Windows. This project demonstrates a techni…
  ☆13Updated 2 months ago
• DErDYAST1R / 64KernelDriverCleaner
  A Kernel Driver that can be used for a cheat or malware base to circumvent common cache & structure table checks. PsLoadedModuleList howe…
  ☆166Updated last week