kouzhudong / AntiHookView external linksLinks
Enum and Remove Hook in Windows
☆50Dec 11, 2025Updated 2 months ago
Alternatives and similar repositories for AntiHook
Users that are interested in AntiHook are comparing it to the libraries listed below
Sorting:
- 使用 Intel 虚拟化特性实现应用层HOOK☆65Sep 11, 2025Updated 5 months ago
- KNSoft.NDK provides native C/C++ definitions and import libraries for Windows NT.☆20Feb 9, 2026Updated last week
- ☆17Apr 21, 2022Updated 3 years ago
- A VMBR (Virtual-Machine Based Rootkit) which runs a guest OS and sends the attacker its data☆28Apr 27, 2024Updated last year
- 从MmPfnData中枚举进程和页目录基址☆205Aug 18, 2023Updated 2 years ago
- ☆24Jul 15, 2023Updated 2 years ago
- etw hook (syscall/infinity hook) compatible with the latest Windows version of PG☆320Apr 27, 2024Updated last year
- A very simple C++ library for download pdb, get rva of function, global variable and offset from struct.☆157Mar 26, 2024Updated last year
- 这篇文章的目的是介绍一款实验性项目基于COM命名管道或者Windows Hyper-V虚拟机Vmbus通道实现的运行在uefi上的windbg调试引擎开发心得☆44Jun 16, 2024Updated last year
- Windows Kernel Misc☆25Sep 3, 2023Updated 2 years ago
- Windows Kernel Knowledge && Collect Resources on the wire && Nothing innovation by myself &&☆62Jan 29, 2026Updated 2 weeks ago
- Attempt to use WFP for proxy interception☆10Jan 13, 2019Updated 7 years ago
- WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API☆26Apr 24, 2022Updated 3 years ago
- Hide Port In Windows☆42Oct 24, 2024Updated last year
- Nightshade is a Windows Memory Manipluation library specifically for injecting DLLs and Game Hacking☆13Dec 12, 2022Updated 3 years ago
- Inject dll to process in driver☆10Aug 27, 2024Updated last year
- A simple DLL injection protection driver.☆12Dec 21, 2020Updated 5 years ago
- Call NtCreateUserProcess directly as normal.☆76May 17, 2022Updated 3 years ago
- Windows Anti-Rootkit Tool☆542Dec 31, 2025Updated last month
- Anti-Rootkit/Anti-Cheat Driver to uncover unbacked or hidden kernel code.☆294Dec 10, 2025Updated 2 months ago
- Hijack NotifyRoutine for a kernelmode thread☆41Jun 4, 2022Updated 3 years ago
- scan system / process integrity☆350Oct 22, 2024Updated last year
- an ida plugin used to decompile vmp☆369Jul 2, 2024Updated last year
- Detect removed thread from PspCidTable.☆75Mar 18, 2022Updated 3 years ago
- ☆117Feb 11, 2022Updated 4 years ago
- Rookit and anti rookit on Windows platform☆14Apr 30, 2024Updated last year
- A lock-free, high-performance logging system designed for Windows kernel drivers☆24Mar 11, 2025Updated 11 months ago
- WinPools is an example of how Windows kernel big pool addresses can be leaking using NtQuerySystemInformation☆15Jun 23, 2019Updated 6 years ago
- windows rootkit☆60May 2, 2024Updated last year
- Hiding a system thread against conventional means of detection☆42Oct 7, 2020Updated 5 years ago
- ☆11Oct 24, 2022Updated 3 years ago
- A series of methods used to detect kernel shellcode for tencent game safe race 2024☆45Apr 22, 2024Updated last year
- Static Library For Windows Drivers☆41Dec 13, 2025Updated 2 months ago
- ☆148Jan 24, 2024Updated 2 years ago
- ☆18Apr 9, 2024Updated last year
- ☆19Oct 25, 2024Updated last year
- Interprocess communication library, providing the ability to call functions from each other☆20Oct 3, 2019Updated 6 years ago
- ☆193May 1, 2023Updated 2 years ago
- Kernel driver for detecting Intel VT-x hypervisors.☆192Jul 11, 2023Updated 2 years ago