Alternatives and similar repositories for funchook

Users that are interested in funchook are comparing it to the libraries listed below

• kubo / injector
  Library for injecting a shared library into a Linux or Windows process
  ☆570Updated last year
• kubo / plthook
  Hook function calls by replacing PLT(Procedure Linkage Table) entries.
  ☆811Updated 8 months ago
• Mixaill / FakePDB
  Tool for PDB generation from IDA Pro database
  ☆584Updated 6 months ago
• wbenny / DetoursNT
  Detours with just single dependency - NTDLL
  ☆637Updated 2 years ago
• trailofbits / pe-parse
  Principled, lightweight C/C++ PE parser
  ☆836Updated 5 months ago
• HoShiMin / HookLib
  The functions interception library written on pure C and NativeAPI with UserMode and KernelMode support
  ☆744Updated 3 weeks ago
• wbenny / pdbex
  pdbex is a utility for reconstructing structures and unions from the PDB into compilable C headers
  ☆855Updated 8 months ago
• hzqst / unicorn_pe
  Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.
  ☆841Updated last year
• stevemk14ebr / PolyHook_2_0
  C++20, x86/x64 Hooking Libary v2.0
  ☆1,689Updated last month
• 0xgalz / Virtuailor
  IDAPython tool for creating automatic C++ virtual tables in IDA Pro
  ☆1,322Updated 3 years ago
• stevemk14ebr / PolyHook
  x86/x64 C++ Hooking Library
  ☆908Updated 4 years ago
• hasherezade / libpeconv
  A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl
  ☆1,220Updated 2 months ago
• tandasat / DdiMon
  Monitoring and controlling kernel API calls with stealth hook using EPT
  ☆1,247Updated 3 years ago
• rwfpl / rewolf-wow64ext
  Helper library for x86 programs that runs under WOW64 layer on x64 versions of Microsoft Windows operating systems.
  ☆970Updated 2 years ago
• wbenny / injdrv
  proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
  ☆1,217Updated last year
• Gbps / gbhv
  Simple x86-64 VT-x Hypervisor with EPT Hooking
  ☆889Updated 2 years ago
• JustasMasiulis / xorstr
  heavily vectorized c++17 compile time string encryption.
  ☆1,306Updated 3 years ago
• JustasMasiulis / inline_syscall
  Inline syscalls made easy for windows on clang
  ☆705Updated 10 months ago
• BeaEngine / beaengine
  BeaEngine disasm project
  ☆542Updated 4 years ago
• everdox / InfinityHook
  Hook system calls, context switches, page faults and more.
  ☆2,539Updated 2 years ago
• HackOvert / AntiDBG
  A bunch of Windows anti-debugging tricks for x86 and x64.
  ☆785Updated 4 years ago
• wbenny / hvpp
  hvpp is a lightweight Intel x64/VT-x hypervisor written in C++ focused primarily on virtualization of already running operating system
  ☆1,179Updated 4 years ago
• HoShiMin / Kernel-Bridge
  Windows kernel hacking framework, driver template, hypervisor and API written on C++
  ☆1,721Updated last year
• hzqst / Syscall-Monitor
  Syscall Monitor is a system monitor program (like Sysinternal's Process Monitor) using Intel VT-X/EPT for Windows7+
  ☆740Updated 7 years ago
• hfiref0x / SyscallTables
  Windows NT Syscall tables
  ☆1,279Updated 2 weeks ago
• can1357 / linux-pe
  COFF and Portable Executable format described using standard C++ with no dependencies.
  ☆281Updated 3 weeks ago
• ThomasThelen / Anti-Debugging
  A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
  ☆571Updated 3 years ago
• zyantific / zasm
  x86-64 Assembler based on Zydis
  ☆358Updated 2 months ago
• tishion / mmLoader
  A library for loading dll module bypassing windows PE loader from memory (x86/x64)
  ☆549Updated last year
• hfiref0x / NtCall64
  Windows NT x64 syscall fuzzer
  ☆605Updated last year