kubo / funchook
Hook function calls by inserting jump instructions at runtime
☆685Updated last year
Alternatives and similar repositories for funchook:
Users that are interested in funchook are comparing it to the libraries listed below
- Library for injecting a shared library into a Linux or Windows process☆564Updated last year
- C++20, x86/x64 Hooking Libary v2.0☆1,677Updated last month
- heavily vectorized c++17 compile time string encryption.☆1,297Updated 3 years ago
- Helper library for x86 programs that runs under WOW64 layer on x64 versions of Microsoft Windows operating systems.☆967Updated 2 years ago
- Hook function calls by replacing PLT(Procedure Linkage Table) entries.☆807Updated 7 months ago
- pdbex is a utility for reconstructing structures and unions from the PDB into compilable C headers☆854Updated 8 months ago
- Detours with just single dependency - NTDLL☆632Updated 2 years ago
- The functions interception library written on pure C and NativeAPI with UserMode and KernelMode support☆742Updated this week
- Virtual-machine Translation Intermediate Language☆1,388Updated last year
- A bunch of Windows anti-debugging tricks for x86 and x64.☆782Updated 3 years ago
- Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.☆836Updated 11 months ago
- A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl☆1,209Updated last month
- Tool for PDB generation from IDA Pro database☆579Updated 5 months ago
- Windows NT Syscall tables☆1,272Updated 3 weeks ago
- hvpp is a lightweight Intel x64/VT-x hypervisor written in C++ focused primarily on virtualization of already running operating system☆1,172Updated 4 years ago
- proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC☆1,209Updated 11 months ago
- Monitoring and controlling kernel API calls with stealth hook using EPT☆1,238Updated 3 years ago
- A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.☆567Updated 3 years ago
- library for importing functions from dlls in a hidden, reverse engineer unfriendly way☆1,745Updated last year
- Hook system calls on Windows by using Kaspersky's hypervisor☆1,166Updated last year
- A tiny C++ obfuscation framework☆678Updated 4 years ago
- Inline syscalls made easy for windows on clang☆702Updated 10 months ago
- VirtualKD-Redux - A revival and modernization of VirtualKD☆880Updated 10 months ago
- Obfuscation library based on C++11/14 and metaprogramming☆1,454Updated 2 years ago
- ClassInformer backported for IDA Pro 7.0☆357Updated 5 years ago
- Hiding kernel-driver for x86/x64.☆2,272Updated 2 months ago
- Simple x86-64 VT-x Hypervisor with EPT Hooking☆887Updated 2 years ago
- Turn off PatchGuard in real time for win7 (7600) ~ later☆1,011Updated 3 years ago
- A wrapper library around native windows sytem APIs☆433Updated 4 years ago
- Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.☆867Updated 5 years ago