Alternatives and similar repositories for API-Hooking:

Users that are interested in API-Hooking are comparing it to the libraries listed below

• je5442804 / CreateProcessInternalW-Full
  Reimplement CreateProcessInternalW via Windows 10 20H1+/Windows 11 Base on NtCreateUserProcess-Post
  ☆60Updated 7 months ago
• idiotc4t / Mapping-injection
  NO WriteProcessMemory CreateRemoteThread APIs call shellcode injection
  ☆28Updated 5 years ago
• ssyuqixe / obfCoder
  A simple program to obfuscate code written in cpp.
  ☆48Updated 11 months ago
• SHA-MRIZ / FsMinfilterHooking
  ☆31Updated 4 years ago
• tdevuser / MalwFinder
  ☆26Updated 5 years ago
• japajoe / StackVMCPP
  A stack and register based virtual machine which can compile and execute arbitrary code in runtime
  ☆44Updated last month
• D0pam1ne705 / Direct-NtCreateUserProcess
  Call NtCreateUserProcess directly as normal.
  ☆71Updated 2 years ago
• kouzhudong / libdrv
  Static Library For Windows Drivers
  ☆33Updated 2 months ago
• NewWorldComingSoon / UnknownField
  UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.
  ☆44Updated 2 years ago
• cs1ime / DICHook
  Hook NtDeviceIoControlFile with PatchGuard
  ☆105Updated 2 years ago
• Broihon / StartRoutine
  A library with four different methods to execute shellcode in a process
  ☆24Updated 5 years ago
• anzelesnik / MySyscall
  Example of hijacking system calls via function pointer tables
  ☆31Updated 3 years ago
• bytesundso / SneakCalls
  direct systemcalls with a modern c++20 interface.
  ☆42Updated 2 years ago
• Flawww / ObfuscatedJumpGenerator
  Dynamically generated obfuscated jumps and/or function calls
  ☆35Updated 2 years ago
• windpiaoxue / sc4cpp
  sc4cpp is a shellcode framework based on C++
  ☆88Updated 3 years ago
• SweetIceLolly / Prevent_File_Deletion
  Record & prevent file deletion in kernel mode
  ☆42Updated 4 years ago
• android1337 / crycall
  Compile-Time Calls Obfuscator for C++14+
  ☆43Updated last year
• GoodstudyChina / APC-injection-x86-x64
  ☆65Updated 6 years ago
• MahmoudZohdy / IAT-Obfuscation
  IAT-Obfuscation to make static analysis of executable harder.
  ☆42Updated 3 years ago
• je5442804 / NtCreateUserProcess-Post
  NtCreateUserProcess with CsrClientCallServer for mainstream Windows x64 version
  ☆30Updated 9 months ago
• mzakocs / CVE-2021-21551-POC
  An extended proof-of-concept for the CVE-2021-21551 Dell ‘dbutil_2_3.sys’ Kernel Exploit
  ☆24Updated 3 years ago
• DearXiaoGui / InfinityHookPro-main
  ☆52Updated 2 years ago
• he4rtbleed / PPLL
  Protected Process Light Library
  ☆18Updated 4 years ago
• y11en / PEBFake
  PEBFake(修改PEB 伪装当前进程路径、参数等)
  ☆51Updated 4 years ago
• estimated1337 / lenovo_exec
  CVE-2022-3699 with arbitrary kernel code execution capability
  ☆70Updated 2 years ago
• Hipepper / antiVM
  Ida pro plugin. The antiVM aims to quickly identify anti-virtual machine and anti-sandbox behavior. This can speed up malware analysis.
  ☆41Updated 2 years ago
• M0rtale / KernelDel
  Free(or force?)file and delete it
  ☆12Updated 6 years ago
• TimelifeCzy / kHypervisorBasic
  VT Hook
  ☆46Updated 9 months ago
• muxq / hellorpc
  windows rpc 使用MIDL+RPC实现HelloWorld
  ☆23Updated 7 years ago
• msmania / hk
  Injector with kernel power
  ☆16Updated 4 years ago