Alternatives and similar repositories for hooking-by-example

Users that are interested in hooking-by-example are comparing it to the libraries listed below

• notscimmy / libelevate
  Handle elevation DKOM against ObRegisterCallbacks
  ☆314Updated 6 years ago
• KooroshRZ / Windows-DLL-Injector
  Some DLL Injection techniques in C++ implemented for both x86 and x64 windows OS processes
  ☆337Updated 3 years ago
• HackOvert / AntiDBG
  A bunch of Windows anti-debugging tricks for x86 and x64.
  ☆793Updated 4 years ago
• BaumFX / cpp-anti-debug
  anti debugging library in c++.
  ☆570Updated last year
• vmcall / dxgkrnl_hook
  C++ graphics kernel subsystem hook
  ☆532Updated 4 years ago
• ThomasThelen / Anti-Debugging
  A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
  ☆594Updated 3 years ago
• guidedhacking / GH_AntiDebug_Bypass_Practice_Tool
  Guided Hacking's official tool to practice bypassing anti-debug techniques.
  ☆285Updated 3 months ago
• JustasMasiulis / nt_wrapper
  A wrapper library around native windows sytem APIs
  ☆441Updated 4 years ago
• jxy-s / stlkrn
  C++ STL in the Windows Kernel with C++ Exception Support
  ☆423Updated 2 years ago
• JustasMasiulis / inline_syscall
  Inline syscalls made easy for windows on clang
  ☆720Updated last year
• mike1k / perses
  X86 Mutation Engine with Portable Executable compatibility.
  ☆520Updated 3 years ago
• crvvdev / MasterHide
  A x64 Windows Rootkit using SSDT or Hypervisor hook
  ☆554Updated 7 months ago
• chztbby / RebirthGuard
  Anti-cheat library for Windows C++
  ☆467Updated 3 years ago
• HoShiMin / HookLib
  The functions interception library written on pure C and NativeAPI with UserMode and KernelMode support
  ☆749Updated 4 months ago
• MiroKaku / Musa.Veil
  Collection of undocumented Windows API declarations.
  ☆323Updated last week
• changeofpace / Self-Remapping-Code
  This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemo…
  ☆611Updated 6 years ago
• vmcall / nt-mapper
  C++17 PE manualmapper
  ☆374Updated 3 years ago
• HoShiMin / formatPE
  A bunch of parsers for PE and PDB formats in C++
  ☆253Updated last year
• revsic / AntiDebugging
  AntiDebugging sample sources written in C++
  ☆342Updated 7 years ago
• can1357 / linux-pe
  COFF and Portable Executable format described using standard C++ with no dependencies.
  ☆328Updated 4 months ago
• thesecretclub / window_hijack
  Rendering on external windows via hijacking thread contexts
  ☆398Updated 5 years ago
• m417z / ntdoc
  Native API online documentation, based on the System Informer (formerly Process Hacker) phnt headers
  ☆288Updated this week
• mactec0 / Kernelmode-manual-mapping-through-IAT
  Manual mapping without creating any threads, with rw only access
  ☆765Updated 5 years ago
• skadro-official / skCrypter
  Compile-time, Usermode + Kernelmode, safe and lightweight string crypter library for C++11+
  ☆780Updated 4 years ago
• btbd / smap
  DLL scatter manual mapper
  ☆795Updated 4 years ago
• wbenny / DetoursNT
  Detours with just single dependency - NTDLL
  ☆648Updated 3 years ago
• nkga / cheat-driver
  Kernel mode driver for reading/writing process memory. C/Win32.
  ☆301Updated 7 years ago
• adrianyy / rw_socket_driver
  Driver that uses network sockets to communicate with client and read/ write protected process memory.
  ☆566Updated 6 years ago
• anzelesnik / SyscallHook
  System call hook for Windows 10 20H1
  ☆495Updated 4 years ago
• x64dbg / TitanEngine
  TitanEngine Community Edition. Debug engine used by x64dbg.
  ☆445Updated 2 weeks ago