khalladay / hooking-by-example

Related projects ⓘ

Alternatives and complementary repositories for hooking-by-example

• KooroshRZ / Windows-DLL-Injector
  Some DLL Injection techniques in C++ implemented for both x86 and x64 windows OS processes
  ☆328Updated 2 years ago
• MiroKaku / Musa.Veil
  Collection of undocumented Windows API declarations.
  ☆290Updated 2 weeks ago
• HackOvert / AntiDBG
  A bunch of Windows anti-debugging tricks for x86 and x64.
  ☆765Updated 3 years ago
• notscimmy / libelevate
  Handle elevation DKOM against ObRegisterCallbacks
  ☆282Updated 6 years ago
• chztbby / RebirthGuard
  Anti-cheat library for Windows C++
  ☆402Updated 2 years ago
• crvvdev / MasterHide
  A x64 Windows Rootkit using SSDT or Hypervisor hook
  ☆511Updated 2 weeks ago
• cursey / safetyhook
  C++23 procedure hooking library.
  ☆387Updated last week
• guidedhacking / anti-debugging
  Anti-debugging techniques on a (bad looking) Win32 application.
  ☆234Updated 7 months ago
• BaumFX / cpp-anti-debug
  anti debugging library in c++.
  ☆515Updated 9 months ago
• HoShiMin / HookLib
  The functions interception library written on pure C and NativeAPI with UserMode and KernelMode support
  ☆726Updated last year
• JustasMasiulis / inline_syscall
  Inline syscalls made easy for windows on clang
  ☆670Updated 4 months ago
• jxy-s / stlkrn
  C++ STL in the Windows Kernel with C++ Exception Support
  ☆392Updated last year
• vmcall / dxgkrnl_hook
  C++ graphics kernel subsystem hook
  ☆476Updated 3 years ago
• anzelesnik / SyscallHook
  System call hook for Windows 10 20H1
  ☆479Updated 3 years ago
• changeofpace / Self-Remapping-Code
  This program remaps its image to prevent the page protection of pages contained in the image from being modified via NtProtectVirtualMemo…
  ☆562Updated 5 years ago
• mike1k / perses
  X86 Mutation Engine with Portable Executable compatibility.
  ☆448Updated 2 years ago
• thesecretclub / window_hijack
  Rendering on external windows via hijacking thread contexts
  ☆378Updated 4 years ago
• ThomasThelen / Anti-Debugging
  A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
  ☆535Updated 2 years ago
• MiroKaku / ucxxrt
  The Universal C++ RunTime library, supporting kernel-mode C++ exception-handler and STL.
  ☆398Updated 4 months ago
• can1357 / linux-pe
  COFF and Portable Executable format described using standard C++ with no dependencies.
  ☆254Updated 6 months ago
• adrianyy / kernelhook
  Windows inline hooking tool.
  ☆219Updated 6 years ago
• bb107 / MemoryModulePP
  MemoryModule which compatible with Win32 API and support exception handling
  ☆357Updated this week
• horsicq / PDBRipper
  PDBRipper is a utility for extract an information from PDB-files.
  ☆799Updated this week
• mactec0 / Kernelmode-manual-mapping-through-IAT
  Manual mapping without creating any threads, with rw only access
  ☆682Updated 5 years ago
• iPower / KasperskyHook
  Hook system calls on Windows by using Kaspersky's hypervisor
  ☆1,112Updated 7 months ago
• can1357 / ThePerfectInjector
  Literally, the perfect injector.
  ☆863Updated last year
• wbenny / DetoursNT
  Detours with just single dependency - NTDLL
  ☆608Updated 2 years ago
• can1357 / NtRays
  Hex-Rays microcode plugin for automated simplification of Windows Kernel decompilation.
  ☆545Updated last month
• Chemiculs / qengine
  C++ 17 or higher control flow obfuscation library for windows binaries
  ☆323Updated 2 months ago
• ryan-weil / HideProcessHook
  DLL that hooks the NtQuerySystemInformation API and hides a process name
  ☆281Updated last year