Alternatives and similar repositories for funchook:

Users that are interested in funchook are comparing it to the libraries listed below

• kubo / injector
  Library for injecting a shared library into a Linux or Windows process
  ☆554Updated last year
• kubo / plthook
  Hook function calls by replacing PLT(Procedure Linkage Table) entries.
  ☆805Updated 7 months ago
• wbenny / DetoursNT
  Detours with just single dependency - NTDLL
  ☆620Updated 2 years ago
• stevemk14ebr / PolyHook_2_0
  C++20, x86/x64 Hooking Libary v2.0
  ☆1,667Updated this week
• wbenny / pdbex
  pdbex is a utility for reconstructing structures and unions from the PDB into compilable C headers
  ☆850Updated 7 months ago
• wbenny / injdrv
  proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
  ☆1,206Updated 11 months ago
• HoShiMin / HookLib
  The functions interception library written on pure C and NativeAPI with UserMode and KernelMode support
  ☆739Updated last year
• hzqst / unicorn_pe
  Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.
  ☆829Updated 10 months ago
• tandasat / DdiMon
  Monitoring and controlling kernel API calls with stealth hook using EPT
  ☆1,232Updated 3 years ago
• HackOvert / AntiDBG
  A bunch of Windows anti-debugging tricks for x86 and x64.
  ☆779Updated 3 years ago
• vtil-project / VTIL-Core
  Virtual-machine Translation Intermediate Language
  ☆1,386Updated last year
• Mixaill / FakePDB
  Tool for PDB generation from IDA Pro database
  ☆576Updated 5 months ago
• horsicq / PDBRipper
  PDBRipper is a utility for extract an information from PDB-files.
  ☆826Updated this week
• JustasMasiulis / xorstr
  heavily vectorized c++17 compile time string encryption.
  ☆1,283Updated 3 years ago
• rwfpl / rewolf-wow64ext
  Helper library for x86 programs that runs under WOW64 layer on x64 versions of Microsoft Windows operating systems.
  ☆961Updated 2 years ago
• can1357 / linux-pe
  COFF and Portable Executable format described using standard C++ with no dependencies.
  ☆278Updated last month
• hasherezade / libpeconv
  A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl
  ☆1,189Updated 3 weeks ago
• changeofpace / VivienneVMM
  VivienneVMM is a stealthy debugging framework implemented via an Intel VT-x hypervisor.
  ☆799Updated 4 years ago
• trailofbits / pe-parse
  Principled, lightweight C/C++ PE parser
  ☆825Updated 4 months ago
• BeaEngine / beaengine
  BeaEngine disasm project
  ☆531Updated 4 years ago
• secrary / makin
  makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]
  ☆738Updated 6 years ago
• hfiref0x / SyscallTables
  Windows NT Syscall tables
  ☆1,258Updated 2 months ago
• JustasMasiulis / inline_syscall
  Inline syscalls made easy for windows on clang
  ☆698Updated 9 months ago
• stevemk14ebr / PolyHook
  x86/x64 C++ Hooking Library
  ☆901Updated 4 years ago
• tishion / mmLoader
  A library for loading dll module bypassing windows PE loader from memory (x86/x64)
  ☆545Updated last year
• bitdefender / bddisasm
  bddisasm is a fast, lightweight, x86/x64 instruction decoder. The project also features a fast, basic, x86/x64 instruction emulator, des…
  ☆941Updated last week
• can1357 / ByePg
  Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.
  ☆861Updated 5 years ago
• 0xgalz / Virtuailor
  IDAPython tool for creating automatic C++ virtual tables in IDA Pro
  ☆1,309Updated 3 years ago
• Gbps / gbhv
  Simple x86-64 VT-x Hypervisor with EPT Hooking
  ☆881Updated last year
• everdox / InfinityHook
  Hook system calls, context switches, page faults and more.
  ☆2,513Updated last year