debasishm89 / qHooKLinks
qHooK is very simple python script (dependent on pydbg) which hooks user defined Win32 APIs in any process and monitor then while process is running and at last prepare a CSV report with various interesting information which can help reverse engineer to track down / analyse unknown exploit samples / shellcode.
☆21Updated 10 years ago
Alternatives and similar repositories for qHooK
Users that are interested in qHooK are comparing it to the libraries listed below
Sorting:
- A plugin for x64dbg for x86 emulation powered by the Unicorn-engine.☆29Updated 9 years ago
- IDA Pro plug-in and tools for displaying 3D graphs of procedures using UbiGraph☆26Updated 12 years ago
- A collection of tools for injecting DSOs in processes under various operating systems☆50Updated 2 years ago
- findLoop - find possible encryption/decryption or compression/decompression code☆26Updated 6 years ago
- PEAnalyser is an open source PE file analysis tool.☆11Updated 4 years ago
- IDA Pro Plugins☆19Updated 10 years ago
- ☆18Updated 3 months ago
- Windows Inline function hooking library targeted at MSVC☆28Updated 9 years ago
- A C/C++ code obfuscator based on llvm/clang technology☆16Updated 11 years ago
- Anti-Anti-Debugger Plugins☆19Updated 12 years ago
- OllyCallTrace is a plugin for OllyDbg to trace the call chain of a thread.☆53Updated 13 years ago
- Dalvik Header Plugin for IDA Pro☆23Updated 12 years ago
- Kernel Shellcode to add all privileges in token☆15Updated 8 years ago
- IDA plugin CMake build-script☆36Updated last week
- crauEmu is an uEmu extension for developing and analyzing payloads for code-reuse attacks☆111Updated 5 years ago
- Allows you to add breakpoints from IDA (from the graph/text view) to WinDbg easily☆14Updated 6 years ago
- VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …☆18Updated 8 years ago
- Reverse engineering toolkit for exploit/malware analysis☆35Updated 5 years ago
- My commands and scripts extending WinDbg☆41Updated 5 months ago
- Windows build files for the VMHunt Intel PIN Trace tool☆19Updated 6 years ago
- A debugger / emulator for Ghidra☆14Updated 5 years ago
- Import debugging traces from WinDBG into IDA. Color the graph, fill in the value of all the operands, etc.☆25Updated 12 years ago
- Fetch and set configuration values from IDAPython scripts☆24Updated 5 years ago
- An instrumentation script based on Frida which leverages Control Flow Guard to intercept indirect calls in CFG-enabled Windows binaries.☆29Updated 10 years ago
- ☆14Updated 7 years ago
- A sample project for using Capstone from a driver in Visual Studio 2015☆36Updated 9 years ago
- OllyHeapTrace is a plugin for OllyDbg to trace the heap operations being performed by a process.☆55Updated 13 years ago
- Scripts for x64dbg to find the OEP of exe files packed with UPX☆14Updated 8 years ago
- API logger plugin for Intel Pintool☆14Updated 7 years ago
- Open and generic Anti-Anti Reversing Framework. Works in 32 and 64 bits.☆66Updated 12 years ago