kouzhudong/AntiHook

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/kouzhudong/AntiHook)

kouzhudong / AntiHook

Enum and Remove Hook in Windows

☆52

Alternatives and similar repositories for AntiHook

Users that are interested in AntiHook are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

NoHeart2019 / KasR3Hook
View on GitHub
使用 Intel 虚拟化特性实现应用层HOOK
☆65Sep 11, 2025Updated 8 months ago
KNSoft / KNSoft.NDK
View on GitHub
KNSoft.NDK provides native C/C++ definitions and import libraries for Windows NT.
☆23Apr 24, 2026Updated 3 weeks ago
cbwang505 / windbg-uefi
View on GitHub
这篇文章的目的是介绍一款实验性项目基于COM命名管道或者Windows Hyper-V虚拟机Vmbus通道实现的运行在uefi上的windbg调试引擎开发心得
☆41Jun 16, 2024Updated last year
MapleSwan / enum_real_dirbase
View on GitHub
从MmPfnData中枚举进程和页目录基址
☆212Aug 18, 2023Updated 2 years ago
bopin2020 / WindowsCamp
View on GitHub
Windows Kernel Knowledge && Collect Resources on the wire && Nothing innovation by myself &&
☆64Jan 29, 2026Updated 3 months ago
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
gmh5225 / warbird-example
View on GitHub
☆25Jul 15, 2023Updated 2 years ago
kouzhudong / InjectDll
View on GitHub
Inject dll to process in driver
☆10Aug 27, 2024Updated last year
Kwansy98 / EasyPdb
View on GitHub
A very simple C++ library for download pdb, get rva of function, global variable and offset from struct.
☆161Mar 26, 2024Updated 2 years ago
BeneficialCode / WinArk
View on GitHub
Windows Anti-Rootkit Tool
☆560May 9, 2026Updated last week
Oxygen1a1 / InfinityHook_latest
View on GitHub
etw hook (syscall/infinity hook) compatible with the latest Windows version of PG
☆337Apr 26, 2026Updated 3 weeks ago
1401199262 / UnsuccessfulDriver
View on GitHub
☆17Apr 21, 2022Updated 4 years ago
D0pam1ne705 / Direct-NtCreateUserProcess
View on GitHub
Call NtCreateUserProcess directly as normal.
☆77May 17, 2022Updated 4 years ago
boom-cr3 / NotifyRoutineHijackThread
View on GitHub
Hijack NotifyRoutine for a kernelmode thread
☆41Jun 4, 2022Updated 3 years ago
rogxo / KernelHack
View on GitHub
Windows Kernel Misc
☆25Sep 3, 2023Updated 2 years ago
GPU virtual machines on DigitalOcean Gradient AI • Ad
Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
eversinc33 / unKover
View on GitHub
Anti-Rootkit/Anti-Cheat Driver to uncover unbacked or hidden kernel code.
☆326Mar 12, 2026Updated 2 months ago
saereya / nightshade
View on GitHub
Nightshade is a Windows Memory Manipluation library specifically for injecting DLLs and Game Hacking
☆13Dec 12, 2022Updated 3 years ago
huaraz / ProxyIntercept
View on GitHub
Attempt to use WFP for proxy interception
☆11Jan 13, 2019Updated 7 years ago
gognl / VMBR
View on GitHub
A VMBR (Virtual-Machine Based Rootkit) which runs a guest OS and sends the attacker its data
☆28Apr 27, 2024Updated 2 years ago
rogxo / search
View on GitHub
A series of methods used to detect kernel shellcode for tencent game safe race 2024
☆46Apr 22, 2024Updated 2 years ago
fjqisba / VmpHelper
View on GitHub
an ida plugin used to decompile vmp
☆386Jul 2, 2024Updated last year
haidragon / drivertools
View on GitHub
驱动开发工具包
☆11Dec 8, 2018Updated 7 years ago
kouzhudong / HidePort
View on GitHub
Hide Port In Windows
☆42Oct 24, 2024Updated last year
Midi12 / whse
View on GitHub
WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API
☆26Apr 24, 2022Updated 4 years ago
Wordpress hosting with auto-scaling - Free Trial Offer • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
Shad0wB1ackCat / AntiCheat
View on GitHub
A simple DLL injection protection driver.
☆12Dec 21, 2020Updated 5 years ago
DownWithUp / WinPools
View on GitHub
WinPools is an example of how Windows kernel big pool addresses can be leaking using NtQuerySystemInformation
☆15Jun 23, 2019Updated 6 years ago
J0xna / Kernel-Overlay-Hider
View on GitHub
☆146Jan 24, 2024Updated 2 years ago
1401199262 / Protect_Process
View on GitHub
☆115Feb 11, 2022Updated 4 years ago
Air14 / airhv
View on GitHub
Simple Intel VT-x hypervisor
☆363Dec 10, 2023Updated 2 years ago
Kqlu666 / Apc-Injector-Eac-Be
View on GitHub
☆19Apr 9, 2024Updated 2 years ago
WolfyZ99 / Kernel-AntiCheat
View on GitHub
☆67Aug 31, 2021Updated 4 years ago
momo5502 / ept-hook-detection
View on GitHub
🪝 Various EPT hook detection approaches
☆149Feb 22, 2026Updated 2 months ago
kitty8904 / blanket
View on GitHub
Hiding a system thread against conventional means of detection
☆41Oct 7, 2020Updated 5 years ago
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
Oxygen1a1 / DrvMon
View on GitHub
a monitoring windows driver calls kernel api tools
☆133Jul 5, 2024Updated last year
shaygitub / windows-rootkit
View on GitHub
windows rootkit
☆61May 2, 2024Updated 2 years ago
ekknod / drvscan
View on GitHub
scan system / process integrity
☆359Oct 22, 2024Updated last year
jonomango / nohv
View on GitHub
Kernel driver for detecting Intel VT-x hypervisors.
☆202Jul 11, 2023Updated 2 years ago
1401199262 / AntiScreenCapture-r0
View on GitHub
☆72Jan 15, 2022Updated 4 years ago
0mWindyBug / GhostMapperUM
View on GitHub
manual map unsigned driver over signed memory
☆227Apr 11, 2024Updated 2 years ago
Chener-03 / AntiHook
View on GitHub
扫描以及恢复 r3hook 类
☆10Aug 29, 2021Updated 4 years ago