debasishm89 / qHooKLinks
qHooK is very simple python script (dependent on pydbg) which hooks user defined Win32 APIs in any process and monitor then while process is running and at last prepare a CSV report with various interesting information which can help reverse engineer to track down / analyse unknown exploit samples / shellcode.
☆21Updated 10 years ago
Alternatives and similar repositories for qHooK
Users that are interested in qHooK are comparing it to the libraries listed below
Sorting:
- IDA Pro Plugins☆19Updated 10 years ago
- IDA Pro plug-in and tools for displaying 3D graphs of procedures using UbiGraph☆25Updated 11 years ago
- My commands and scripts extending WinDbg☆34Updated 2 months ago
- ☆28Updated 8 years ago
- Exploit development library for python users☆11Updated 2 years ago
- My conference presentations and publications☆26Updated 3 years ago
- findLoop - find possible encryption/decryption or compression/decompression code☆26Updated 6 years ago
- The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers☆34Updated 8 years ago
- IDApro idc and idapython script collection☆28Updated last year
- Kernel Shellcode to add all privileges in token☆13Updated 8 years ago
- Dalvik Header Plugin for IDA Pro☆22Updated 12 years ago
- Solutions to HackSysExtremeVulnerableDriver challenges though my following of @FuzzySecurity's tutorials plus futher explanations where n…☆22Updated 7 years ago
- Scripts for x64dbg to find the OEP of exe files packed with UPX☆14Updated 7 years ago
- Kernel-mode file scanner☆18Updated 6 years ago
- A tool evaluates security configurations of a given PE based on SDL without source code☆14Updated 10 years ago
- Helper utility for debugging windows PE/PE+ loader.☆52Updated 10 years ago
- Guest to host VM escape exploit for Parallels Desktop☆28Updated 10 years ago
- Symbolic debugging tool using JonathanSalwan/Triton☆25Updated 6 years ago
- IDA WhatAPIs PlugIn☆7Updated 9 years ago
- DLL Injection commandline utility☆26Updated 12 years ago
- A C/C++ code obfuscator based on llvm/clang technology☆16Updated 10 years ago
- TrueCrypt 7.2 — (Source Codes)☆8Updated 8 years ago
- POC for cve-2019-1458☆21Updated 5 years ago
- wow64 syscall filter☆13Updated 10 years ago
- ☆12Updated 10 years ago
- Engine for communication with remote kernel debugger (KD, WinDbg) from drivers and applications☆36Updated 11 years ago
- ☆14Updated 7 years ago
- PyQt plugin for Ida Pro for Screen recording.☆12Updated 8 years ago
- This project has been moved from a private repository☆26Updated 7 years ago
- ☆16Updated 8 years ago