kouzhudong/AntiHook

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/kouzhudong/AntiHook)

kouzhudong / AntiHook

Enum and Remove Hook in Windows

☆52

Alternatives and similar repositories for AntiHook

Users that are interested in AntiHook are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

NoHeart2019 / KasR3Hook
View on GitHub
使用 Intel 虚拟化特性实现应用层HOOK
☆66Sep 11, 2025Updated 9 months ago
KNSoft / KNSoft.NDK
View on GitHub
KNSoft.NDK provides native C/C++ definitions and import libraries for Windows NT.
☆24Updated this week
cbwang505 / windbg-uefi
View on GitHub
这篇文章的目的是介绍一款实验性项目基于COM命名管道或者Windows Hyper-V虚拟机Vmbus通道实现的运行在uefi上的windbg调试引擎开发心得
☆41Jun 16, 2024Updated 2 years ago
MapleSwan / enum_real_dirbase
View on GitHub
从MmPfnData中枚举进程和页目录基址
☆215Aug 18, 2023Updated 2 years ago
bopin2020 / WindowsCamp
View on GitHub
Windows Kernel Knowledge && Collect Resources on the wire && Nothing innovation by myself &&
☆64Jan 29, 2026Updated 5 months ago
Managed Database hosting by DigitalOcean • Ad
PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
gmh5225 / warbird-example
View on GitHub
☆26Jul 15, 2023Updated 2 years ago
Kwansy98 / EasyPdb
View on GitHub
A very simple C++ library for download pdb, get rva of function, global variable and offset from struct.
☆162Mar 26, 2024Updated 2 years ago
BeneficialCode / WinArk
View on GitHub
Windows Anti-Rootkit Tool
☆562Jun 12, 2026Updated 2 weeks ago
Oxygen1a1 / InfinityHook_latest
View on GitHub
etw hook (syscall/infinity hook) compatible with the latest Windows version of PG
☆342Apr 26, 2026Updated 2 months ago
1401199262 / UnsuccessfulDriver
View on GitHub
☆17Apr 21, 2022Updated 4 years ago
D0pam1ne705 / Direct-NtCreateUserProcess
View on GitHub
Call NtCreateUserProcess directly as normal.
☆77May 17, 2022Updated 4 years ago
boom-cr3 / NotifyRoutineHijackThread
View on GitHub
Hijack NotifyRoutine for a kernelmode thread
☆40Jun 4, 2022Updated 4 years ago
rogxo / KernelHack
View on GitHub
Windows Kernel Misc
☆25Sep 3, 2023Updated 2 years ago
lyc8503 / MiniHIPS
View on GitHub
[WIP] A FOSS hook-powered HIPS for Windows / 火绒文件防御功能开源实现
☆11Jun 24, 2024Updated 2 years ago
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
eversinc33 / unKover
View on GitHub
Anti-Rootkit/Anti-Cheat Driver to uncover unbacked or hidden kernel code.
☆335Mar 12, 2026Updated 3 months ago
saereya / nightshade
View on GitHub
Nightshade is a Windows Memory Manipluation library specifically for injecting DLLs and Game Hacking
☆13Dec 12, 2022Updated 3 years ago
huaraz / ProxyIntercept
View on GitHub
Attempt to use WFP for proxy interception
☆11Jan 13, 2019Updated 7 years ago
gognl / VMBR
View on GitHub
A VMBR (Virtual-Machine Based Rootkit) which runs a guest OS and sends the attacker its data
☆28Apr 27, 2024Updated 2 years ago
rogxo / search
View on GitHub
A series of methods used to detect kernel shellcode for tencent game safe race 2024
☆46Apr 22, 2024Updated 2 years ago
fjqisba / VmpHelper
View on GitHub
an ida plugin used to decompile vmp
☆391Jul 2, 2024Updated last year
haidragon / drivertools
View on GitHub
驱动开发工具包
☆11Dec 8, 2018Updated 7 years ago
kouzhudong / HidePort
View on GitHub
Hide Port In Windows
☆42Oct 24, 2024Updated last year
Midi12 / whse
View on GitHub
WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API
☆26Apr 24, 2022Updated 4 years ago
Deploy on Railway without the complexity - Free Credits Offer • Ad
Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
Shad0wB1ackCat / AntiCheat
View on GitHub
A simple DLL injection protection driver.
☆12Dec 21, 2020Updated 5 years ago
DownWithUp / WinPools
View on GitHub
WinPools is an example of how Windows kernel big pool addresses can be leaking using NtQuerySystemInformation
☆15Jun 23, 2019Updated 7 years ago
J0xna / Kernel-Overlay-Hider
View on GitHub
☆147Jan 24, 2024Updated 2 years ago
1401199262 / Protect_Process
View on GitHub
☆115Feb 11, 2022Updated 4 years ago
Air14 / airhv
View on GitHub
Simple Intel VT-x hypervisor
☆366Dec 10, 2023Updated 2 years ago
Kqlu666 / Apc-Injector-Eac-Be
View on GitHub
☆19Apr 9, 2024Updated 2 years ago
WolfyZ99 / Kernel-AntiCheat
View on GitHub
☆67Aug 31, 2021Updated 4 years ago
momo5502 / ept-hook-detection
View on GitHub
🪝 Various EPT hook detection approaches
☆156Feb 22, 2026Updated 4 months ago
kitty8904 / blanket
View on GitHub
Hiding a system thread against conventional means of detection
☆41Oct 7, 2020Updated 5 years ago
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
Oxygen1a1 / DrvMon
View on GitHub
a monitoring windows driver calls kernel api tools
☆137Jul 5, 2024Updated last year
shaygitub / windows-rootkit
View on GitHub
windows rootkit
☆61May 2, 2024Updated 2 years ago
ekknod / drvscan
View on GitHub
scan system / process integrity
☆366Oct 22, 2024Updated last year
jonomango / nohv
View on GitHub
Kernel driver for detecting Intel VT-x hypervisors.
☆205Jul 11, 2023Updated 2 years ago
1401199262 / AntiScreenCapture-r0
View on GitHub
☆73Jan 15, 2022Updated 4 years ago
0mWindyBug / GhostMapperUM
View on GitHub
manual map unsigned driver over signed memory
☆232Apr 11, 2024Updated 2 years ago
Chener-03 / AntiHook
View on GitHub
扫描以及恢复 r3hook 类
☆10Aug 29, 2021Updated 4 years ago