debasishm89 / qHooKLinks
qHooK is very simple python script (dependent on pydbg) which hooks user defined Win32 APIs in any process and monitor then while process is running and at last prepare a CSV report with various interesting information which can help reverse engineer to track down / analyse unknown exploit samples / shellcode.
☆21Updated 10 years ago
Alternatives and similar repositories for qHooK
Users that are interested in qHooK are comparing it to the libraries listed below
Sorting:
- Anti-Anti-Debugger Plugins☆19Updated 12 years ago
- Windows Inline function hooking library targeted at MSVC☆27Updated 9 years ago
- OllyCallTrace is a plugin for OllyDbg to trace the call chain of a thread.☆53Updated 13 years ago
- Solutions to HackSysExtremeVulnerableDriver challenges though my following of @FuzzySecurity's tutorials plus futher explanations where n…☆22Updated 8 years ago
- IDA Pro plug-in and tools for displaying 3D graphs of procedures using UbiGraph☆26Updated 12 years ago
- PEAnalyser is an open source PE file analysis tool.☆11Updated 4 years ago
- A plugin for x64dbg for x86 emulation powered by the Unicorn-engine.☆29Updated 9 years ago
- findLoop - find possible encryption/decryption or compression/decompression code☆26Updated 6 years ago
- My commands and scripts extending WinDbg☆41Updated 5 months ago
- IDA Pro Plugins☆19Updated 10 years ago
- ASProtect reverse engineering & analysis WinDbg extension☆24Updated 4 years ago
- OllyHeapTrace is a plugin for OllyDbg to trace the heap operations being performed by a process.☆55Updated 13 years ago
- ☆34Updated 7 years ago
- Open and generic Anti-Anti Reversing Framework. Works in 32 and 64 bits.☆66Updated 12 years ago
- A collection of tools for injecting DSOs in processes under various operating systems☆50Updated 2 years ago
- A simple API monitor for Windbg☆63Updated 8 years ago
- An application for obtaining, dumping and modifying token from user land.☆26Updated 9 years ago
- Anti-technique Codes, Detection of Anti-technique codes☆38Updated 11 years ago
- A sample project for using Capstone from a driver in Visual Studio 2015☆36Updated 9 years ago
- Fetch and set configuration values from IDAPython scripts☆24Updated 4 years ago
- Import debugging traces from WinDBG into IDA. Color the graph, fill in the value of all the operands, etc.☆25Updated 12 years ago
- ☆33Updated 7 years ago
- modify binary Portable Executable to hook its export functions☆63Updated 6 years ago
- An instrumentation script based on Frida which leverages Control Flow Guard to intercept indirect calls in CFG-enabled Windows binaries.☆29Updated 10 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆32Updated 8 years ago
- A simple native code virtualizer for 32-bit Windows PE☆15Updated 9 years ago
- PCAUSA Rawether for Windows Local Privilege Escalation☆39Updated 8 years ago
- ☆18Updated 3 months ago
- Windows build files for the VMHunt Intel PIN Trace tool☆19Updated 6 years ago
- A C/C++ code obfuscator based on llvm/clang technology☆16Updated 10 years ago