h311d1n3r / LetsHookLinks
A Windows API hooking library !
☆31Updated 2 years ago
Alternatives and similar repositories for LetsHook
Users that are interested in LetsHook are comparing it to the libraries listed below
Sorting:
- EDR PoC WIP LLC☆11Updated last year
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…☆26Updated last year
- Bypassing kernel patch protection runtime☆20Updated 2 years ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆65Updated last year
- Just an example of a well-known technique to detect memory tampering via Windows Working Sets.☆16Updated 3 years ago
- UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.☆44Updated 2 years ago
- Elevate arbitrary MSR writes to kernel execution.☆36Updated last year
- A packed & protected Module Loader and more, for 64-bit Windows☆29Updated 4 years ago
- An example of how to use Microsoft Windows Warbird technology☆28Updated 2 years ago
- Windows Minidump loader for Ghidra☆29Updated 2 years ago
- Symbolic Execution based on lifting amd64 to z3☆27Updated 11 months ago
- Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address☆24Updated 3 years ago
- XOrCryptEx lightweight C Utility/Algorithm☆11Updated 3 years ago
- Single header library to simplify the usage of direct syscalls. x64/x86☆11Updated 2 years ago
- ☆29Updated 3 years ago
- Native API header files for the Process Hacker project (nightly).☆26Updated 2 weeks ago
- A way to detect DBI frameworks, Debuggers and VMs.☆22Updated 4 years ago
- A driver to implement IOCTL hooking☆25Updated 3 years ago
- Analysing and defeating PatchGuard universally☆35Updated 4 years ago
- Fake Timestamps of Driver Certificates while keeping validity.☆17Updated 3 years ago
- Small project to generate fake DLLs based on an executable's import table☆23Updated 5 years ago
- Extensions for x64dbg written in Rust: Telescope and Unicorn powered disassembly☆25Updated 2 years ago
- Скрытие строки от отладчиков и декомпиляторов☆50Updated 5 years ago
- Rust program for interfacing with the gigabyte driver to gain access to powerful primitives such as arbitrary kernel memcpy.☆17Updated 2 years ago
- A demonstration of hooking into the VMProtect-2 virtual machine☆19Updated last year
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆33Updated 5 years ago
- Linux kernel-mode and user-space with wine/MinGW/Windows compability hacking library.☆12Updated 2 years ago
- devirtualization vmprotect☆62Updated 2 years ago
- Me fockin' pe protector☆45Updated 2 years ago
- Anti-Analysis technique, trick the debugger by Hiding events from it.☆19Updated 3 years ago