Alternatives and similar repositories for funchook:

Users that are interested in funchook are comparing it to the libraries listed below

• kubo / injector
  Library for injecting a shared library into a Linux or Windows process
  ☆564Updated last year
• stevemk14ebr / PolyHook_2_0
  C++20, x86/x64 Hooking Libary v2.0
  ☆1,677Updated last month
• JustasMasiulis / xorstr
  heavily vectorized c++17 compile time string encryption.
  ☆1,297Updated 3 years ago
• rwfpl / rewolf-wow64ext
  Helper library for x86 programs that runs under WOW64 layer on x64 versions of Microsoft Windows operating systems.
  ☆967Updated 2 years ago
• kubo / plthook
  Hook function calls by replacing PLT(Procedure Linkage Table) entries.
  ☆807Updated 7 months ago
• wbenny / pdbex
  pdbex is a utility for reconstructing structures and unions from the PDB into compilable C headers
  ☆854Updated 8 months ago
• wbenny / DetoursNT
  Detours with just single dependency - NTDLL
  ☆632Updated 2 years ago
• HoShiMin / HookLib
  The functions interception library written on pure C and NativeAPI with UserMode and KernelMode support
  ☆742Updated this week
• vtil-project / VTIL-Core
  Virtual-machine Translation Intermediate Language
  ☆1,388Updated last year
• HackOvert / AntiDBG
  A bunch of Windows anti-debugging tricks for x86 and x64.
  ☆782Updated 3 years ago
• hzqst / unicorn_pe
  Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.
  ☆836Updated 11 months ago
• hasherezade / libpeconv
  A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl
  ☆1,209Updated last month
• Mixaill / FakePDB
  Tool for PDB generation from IDA Pro database
  ☆579Updated 5 months ago
• hfiref0x / SyscallTables
  Windows NT Syscall tables
  ☆1,272Updated 3 weeks ago
• wbenny / hvpp
  hvpp is a lightweight Intel x64/VT-x hypervisor written in C++ focused primarily on virtualization of already running operating system
  ☆1,172Updated 4 years ago
• wbenny / injdrv
  proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
  ☆1,209Updated 11 months ago
• tandasat / DdiMon
  Monitoring and controlling kernel API calls with stealth hook using EPT
  ☆1,238Updated 3 years ago
• ThomasThelen / Anti-Debugging
  A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
  ☆567Updated 3 years ago
• JustasMasiulis / lazy_importer
  library for importing functions from dlls in a hidden, reverse engineer unfriendly way
  ☆1,745Updated last year
• iPower / KasperskyHook
  Hook system calls on Windows by using Kaspersky's hypervisor
  ☆1,166Updated last year
• fritzone / obfy
  A tiny C++ obfuscation framework
  ☆678Updated 4 years ago
• JustasMasiulis / inline_syscall
  Inline syscalls made easy for windows on clang
  ☆702Updated 10 months ago
• 4d61726b / VirtualKD-Redux
  VirtualKD-Redux - A revival and modernization of VirtualKD
  ☆880Updated 10 months ago
• andrivet / ADVobfuscator
  Obfuscation library based on C++11/14 and metaprogramming
  ☆1,454Updated 2 years ago
• rcx / classinformer-ida7
  ClassInformer backported for IDA Pro 7.0
  ☆357Updated 5 years ago
• mrexodia / TitanHide
  Hiding kernel-driver for x86/x64.
  ☆2,272Updated 2 months ago
• Gbps / gbhv
  Simple x86-64 VT-x Hypervisor with EPT Hooking
  ☆887Updated 2 years ago
• 9176324 / Shark
  Turn off PatchGuard in real time for win7 (7600) ~ later
  ☆1,011Updated 3 years ago
• JustasMasiulis / nt_wrapper
  A wrapper library around native windows sytem APIs
  ☆433Updated 4 years ago
• can1357 / ByePg
  Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.
  ☆867Updated 5 years ago