hMihaiDavid / hooks
A DLL that performs IAT hooking
☆27Updated 6 years ago
Alternatives and similar repositories for hooks:
Users that are interested in hooks are comparing it to the libraries listed below
- Helper utility for debugging windows PE/PE+ loader.☆52Updated 10 years ago
- A Win32 PE/Executable Crypter that employs on the fly encryption & decryption of memory☆33Updated 11 years ago
- DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10☆52Updated last year
- Simple PE packer with RtlCompressBuffer☆21Updated 9 years ago
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆33Updated 5 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆54Updated 5 years ago
- Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.☆75Updated 14 years ago
- Class implementation of PowerLoader injection technique☆29Updated 8 years ago
- An API Monitor based on Instrumentation☆43Updated 7 years ago
- Decrement Windows Kernel for fun and profit☆38Updated 7 years ago
- ☆22Updated 4 years ago
- a binary x86win32 code obfuscator using virtual machine☆32Updated 8 years ago
- win32/x64 obfuscate framework☆32Updated 6 years ago
- Figuring out the cause of a handle downgrade☆24Updated 2 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆19Updated 7 years ago
- A tool to help malware analysts tell that the sample is injecting code into other process.☆77Updated 9 years ago
- APIInfo Plugin (x86) - A Plugin For x64dbg☆50Updated 6 years ago
- Use WinDBG to trace the Windows API calls of any Portable Executable file☆31Updated 8 years ago
- ASUSTeK AsIO3 I/O driver unlock☆21Updated 4 years ago
- drvtriks kernel driver for Windows 7 SP1 and 8.1 x64, that tricks around in your system.☆31Updated 7 years ago
- Library for using direct system calls☆35Updated 2 months ago
- Simple code generation library developed in C intended for code generation in Kernel mode☆16Updated 2 years ago
- APISearch Plugin (x86) - A Plugin For x64dbg☆52Updated 6 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆29Updated 8 years ago
- Simple proof of concept code for injecting libraries on 64bit processes from a 32bit process☆94Updated 6 years ago
- Analyze and attack windows applications using dll hijacking vulnerabilities☆56Updated 5 years ago
- Fetch PDB symbols directly from Microsoft's symbol servers☆41Updated 3 years ago
- Windbg extension that allows you analyze Control Flow Guard map☆34Updated 3 years ago
- PE Library x86☆21Updated 5 years ago
- Hidden kernel mode code execution for bypassing modern anti-rootkits.☆83Updated 14 years ago