A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using InstrumentationCallback.
☆39Sep 23, 2023Updated 2 years ago
Alternatives and similar repositories for InstrumentationCallbackToolKit
Users that are interested in InstrumentationCallbackToolKit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Use NtSetInformationThread(ThreadBreakOnTermination) for anti-debugging☆16Sep 21, 2019Updated 6 years ago
- ☆26Jul 15, 2023Updated 2 years ago
- C# API for Nidhogg rootkit☆21Apr 25, 2024Updated 2 years ago
- ☆28Dec 29, 2021Updated 4 years ago
- Reversed WintaPix Malware Source code | That targets countries in the Middle East and abuse KeServiceDescriptorTable(SSDT), persistence a…☆22Jul 6, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- modern c++ wrapper around the microsoft portable executable file format☆37Nov 22, 2025Updated 7 months ago
- really ?☆12Feb 29, 2024Updated 2 years ago
- ☆20Jul 23, 2023Updated 2 years ago
- A fully static Roblox Client Decryptor☆34Aug 30, 2025Updated 10 months ago
- Templated Obfuscation example in C++ for protecting/hiding values in memory☆39Feb 1, 2025Updated last year
- Walks the CFG bitmap to find previously executable but currently hidden shellcode regions☆139May 17, 2023Updated 3 years ago
- petitboot for ps3 with kexec "sort_segments failed" fixed☆13May 28, 2025Updated last year
- ☆11May 28, 2026Updated last month
- clone from myJIT(a fork of GNU lightning)☆11Mar 17, 2015Updated 11 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆29Nov 22, 2023Updated 2 years ago
- 废物自救项目!一起向光而行!!!☆12May 7, 2022Updated 4 years ago
- ☆21Feb 23, 2022Updated 4 years ago
- Uses ghidra to find all ETW write metadata for each API in a PE file☆29Jul 26, 2024Updated last year
- RE for champions☆17Updated this week
- Winsocket for Cobalt Strike.☆105Jul 6, 2023Updated 2 years ago
- What makes it page☆17Aug 24, 2022Updated 3 years ago
- A lightweight C++ library designed for function interception within injected DLLs, providing a streamlined approach to modifying applicat…☆44Oct 19, 2023Updated 2 years ago
- codes for my blog post: https://secrary.com/Random/InstrumentationCallback/☆183Nov 30, 2017Updated 8 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A minimalistic logger for Windows Kernel Drivers.☆24Mar 8, 2024Updated 2 years ago
- Dangling COM Keys Finder☆17Nov 16, 2021Updated 4 years ago
- Example of real-time Windows ETW packet capture session☆55Jul 12, 2017Updated 8 years ago
- Just a git repo for the sleepmask detection rule i found in https://codex-7.gitbook.io/codexs-terminal-window/blue-team/detecting-cobalt-…☆16Jun 4, 2025Updated last year
- A manual PE mapping implementation, aka reflective loader☆23Feb 28, 2026Updated 4 months ago
- Cognitive memory database for AI agents — consolidates duplicates, detects contradictions, fades stale memories via temporal decay. Rust,…☆164Updated this week
- Clean Indirect Syscalls with Hook Evasion & Return Address Spoofing.☆95Apr 30, 2026Updated 2 months ago
- ☆27Oct 16, 2017Updated 8 years ago
- A proof of concept demonstrating instrumentation callbacks on Windows 10 21h1 with a TLS variable to ensure all syscalls are caught.☆163Nov 14, 2021Updated 4 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆17Apr 18, 2023Updated 3 years ago
- This project is an implant framework designed for long term persistent access to Windows machines.☆108Sep 22, 2023Updated 2 years ago
- random code snippets, useful for getting started☆123Nov 29, 2025Updated 7 months ago
- Modules for my C2 course students to use for their own projects.☆73Jun 13, 2023Updated 3 years ago
- Awesome MalDev Links☆70Jun 21, 2026Updated last week
- My personal shellcode loader☆32Mar 9, 2023Updated 3 years ago
- ☆40Feb 4, 2023Updated 3 years ago