kouzhudong/AntiHook

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/kouzhudong/AntiHook)

kouzhudong / AntiHook

Enum and Remove Hook in Windows

☆52

Alternatives and similar repositories for AntiHook

Users that are interested in AntiHook are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

NoHeart2019 / KasR3Hook
View on GitHub
使用 Intel 虚拟化特性实现应用层HOOK
☆66Sep 11, 2025Updated 6 months ago
KNSoft / KNSoft.NDK
View on GitHub
KNSoft.NDK provides native C/C++ definitions and import libraries for Windows NT.
☆22Mar 19, 2026Updated 3 weeks ago
cbwang505 / windbg-uefi
View on GitHub
这篇文章的目的是介绍一款实验性项目基于COM命名管道或者Windows Hyper-V虚拟机Vmbus通道实现的运行在uefi上的windbg调试引擎开发心得
☆43Jun 16, 2024Updated last year
MapleSwan / enum_real_dirbase
View on GitHub
从MmPfnData中枚举进程和页目录基址
☆210Aug 18, 2023Updated 2 years ago
bopin2020 / WindowsCamp
View on GitHub
Windows Kernel Knowledge && Collect Resources on the wire && Nothing innovation by myself &&
☆62Jan 29, 2026Updated 2 months ago
Proton VPN Special Offer - Get 70% off • Ad
Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
gmh5225 / warbird-example
View on GitHub
☆24Jul 15, 2023Updated 2 years ago
huaraz / ProxyIntercept
View on GitHub
Attempt to use WFP for proxy interception
☆10Jan 13, 2019Updated 7 years ago
kouzhudong / InjectDll
View on GitHub
Inject dll to process in driver
☆10Aug 27, 2024Updated last year
Kwansy98 / EasyPdb
View on GitHub
A very simple C++ library for download pdb, get rva of function, global variable and offset from struct.
☆160Mar 26, 2024Updated 2 years ago
BeneficialCode / WinArk
View on GitHub
Windows Anti-Rootkit Tool
☆548Dec 31, 2025Updated 3 months ago
Oxygen1a1 / InfinityHook_latest
View on GitHub
etw hook (syscall/infinity hook) compatible with the latest Windows version of PG
☆330Apr 27, 2024Updated last year
1401199262 / UnsuccessfulDriver
View on GitHub
☆17Apr 21, 2022Updated 3 years ago
D0pam1ne705 / Direct-NtCreateUserProcess
View on GitHub
Call NtCreateUserProcess directly as normal.
☆77May 17, 2022Updated 3 years ago
boom-cr3 / NotifyRoutineHijackThread
View on GitHub
Hijack NotifyRoutine for a kernelmode thread
☆41Jun 4, 2022Updated 3 years ago
End-to-end encrypted email - Proton Mail • Ad
Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
rogxo / KernelHack
View on GitHub
Windows Kernel Misc
☆25Sep 3, 2023Updated 2 years ago
eversinc33 / unKover
View on GitHub
Anti-Rootkit/Anti-Cheat Driver to uncover unbacked or hidden kernel code.
☆317Mar 12, 2026Updated 3 weeks ago
saereya / nightshade
View on GitHub
Nightshade is a Windows Memory Manipluation library specifically for injecting DLLs and Game Hacking
☆13Dec 12, 2022Updated 3 years ago
gognl / VMBR
View on GitHub
A VMBR (Virtual-Machine Based Rootkit) which runs a guest OS and sends the attacker its data
☆28Apr 27, 2024Updated last year
rogxo / search
View on GitHub
A series of methods used to detect kernel shellcode for tencent game safe race 2024
☆46Apr 22, 2024Updated last year
fjqisba / VmpHelper
View on GitHub
an ida plugin used to decompile vmp
☆378Jul 2, 2024Updated last year
haidragon / drivertools
View on GitHub
驱动开发工具包
☆11Dec 8, 2018Updated 7 years ago
kouzhudong / HidePort
View on GitHub
Hide Port In Windows
☆42Oct 24, 2024Updated last year
Midi12 / whse
View on GitHub
WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API
☆26Apr 24, 2022Updated 3 years ago
Simple, predictable pricing with DigitalOcean hosting • Ad
Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
Shad0wB1ackCat / AntiCheat
View on GitHub
A simple DLL injection protection driver.
☆12Dec 21, 2020Updated 5 years ago
J0xna / Kernel-Overlay-Hider
View on GitHub
☆147Jan 24, 2024Updated 2 years ago
DownWithUp / WinPools
View on GitHub
WinPools is an example of how Windows kernel big pool addresses can be leaking using NtQuerySystemInformation
☆15Jun 23, 2019Updated 6 years ago
Air14 / airhv
View on GitHub
Simple Intel VT-x hypervisor
☆363Dec 10, 2023Updated 2 years ago
1401199262 / Protect_Process
View on GitHub
☆116Feb 11, 2022Updated 4 years ago
Kqlu666 / Apc-Injector-Eac-Be
View on GitHub
☆19Apr 9, 2024Updated 2 years ago
KANKOSHEV / Detect-HiddenThread-via-KPRCB
View on GitHub
Detect removed thread from PspCidTable.
☆75Mar 18, 2022Updated 4 years ago
WolfyZ99 / Kernel-AntiCheat
View on GitHub
☆68Aug 31, 2021Updated 4 years ago
momo5502 / ept-hook-detection
View on GitHub
🪝 Various EPT hook detection approaches
☆144Feb 22, 2026Updated last month
Managed Kubernetes at scale on DigitalOcean • Ad
DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
Oxygen1a1 / DrvMon
View on GitHub
a monitoring windows driver calls kernel api tools
☆131Jul 5, 2024Updated last year
kitty8904 / blanket
View on GitHub
Hiding a system thread against conventional means of detection
☆41Oct 7, 2020Updated 5 years ago
shaygitub / windows-rootkit
View on GitHub
windows rootkit
☆60May 2, 2024Updated last year
ekknod / drvscan
View on GitHub
scan system / process integrity
☆356Oct 22, 2024Updated last year
jonomango / nohv
View on GitHub
Kernel driver for detecting Intel VT-x hypervisors.
☆201Jul 11, 2023Updated 2 years ago
1401199262 / AntiScreenCapture-r0
View on GitHub
☆74Jan 15, 2022Updated 4 years ago
0mWindyBug / GhostMapperUM
View on GitHub
manual map unsigned driver over signed memory
☆223Apr 11, 2024Updated last year