Application behavior monitor based on inline hook
☆227May 6, 2018Updated 7 years ago
Alternatives and similar repositories for PeDoll
Users that are interested in PeDoll are comparing it to the libraries listed below
Sorting:
- The Network project is a C++ encapsulation of WinSock2 to form a lightweight network library; The Graphics project is a C++ encapsulation…☆13Oct 31, 2017Updated 8 years ago
- 基于UC的启发式杀毒引擎[还没做完]☆35Mar 28, 2021Updated 4 years ago
- libdt is part of the "Huorong eXtendible Stream Scan Engine" project copyright by Huorong Borui (Beijing) Technology Co., Ltd.☆14Aug 17, 2015Updated 10 years ago
- v1版完成对PE头,区段,输入表的解析☆11Apr 16, 2018Updated 7 years ago
- PE file manipulation library☆79Jul 30, 2020Updated 5 years ago
- Call NtCreateUserProcess directly as normal.☆77May 17, 2022Updated 3 years ago
- 管道监视器,类似于spyxx之类的东西,一般用于监视目标进程的系统调用.关键词:detours+piep☆23Feb 26, 2014Updated 12 years ago
- 驱动层拦截web访问源码☆30Apr 2, 2018Updated 7 years ago
- ☆171Apr 29, 2014Updated 11 years ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆33Nov 14, 2020Updated 5 years ago
- 黑月编译器插件的核心静态库部分的源码☆147Aug 31, 2024Updated last year
- ☆20Jul 9, 2019Updated 6 years ago
- hijack dll Source Code Generator. support x86/x64☆874Jan 25, 2021Updated 5 years ago
- ☆53Dec 21, 2022Updated 3 years ago
- 扫描以及恢复 r3hook 类☆10Aug 29, 2021Updated 4 years ago
- 进程保护、进程过滤的小工程、主要亮点是在内核中对操作系统中的用户进行管理☆16Nov 5, 2014Updated 11 years ago
- A minifilter driver for detecting and blocking ransomware virus☆27Mar 4, 2018Updated 8 years ago
- Execute commands as local system.☆63Aug 10, 2019Updated 6 years ago
- 关于intel和amd指令行为不一�样这件事☆62Apr 15, 2022Updated 3 years ago
- Position Independent Windows Shellcode Written in C☆297Aug 28, 2018Updated 7 years ago
- libcodecs is part of the "Huorong eXtendible Stream Scan Engine" project copyright by Huorong Borui (Beijing) Technology Co., Ltd.☆24Aug 17, 2015Updated 10 years ago
- 一款windows64位的ark工具 rootkit☆66Dec 30, 2025Updated 2 months ago
- PowerShell interpreter for unmanaged (non CLI) C++ projects☆16Jul 19, 2017Updated 8 years ago
- ollvm de-obfuscator☆63Sep 19, 2021Updated 4 years ago
- AntiSpy is a free but powerful anti virus and rootkits toolkit.It offers you the ability with the highest privileges that can detect,anal…☆1,113Apr 22, 2021Updated 4 years ago
- Page fault hook use ept (Intel Virtualization Technology)☆200Oct 19, 2016Updated 9 years ago
- Walks through the 4-level paging structures in Windows x64☆13Feb 12, 2023Updated 3 years ago
- Experimental disassembler for x86 binaries virtualized by VMProtect 3☆98Aug 27, 2022Updated 3 years ago
- ExDirectUI 4.1☆45Nov 28, 2022Updated 3 years ago
- An Ark tool project,run on Win7 x86/x64☆118Jul 11, 2017Updated 8 years ago
- Simple project that demonstrates how an ETW consumer can be created just by using NTDLL☆146Feb 23, 2019Updated 7 years ago
- SKSocks, for proxy, firewall penetration, data encryption and speeding up internet accessing.☆68Jun 12, 2024Updated last year
- An ark tool's driver☆40May 11, 2017Updated 8 years ago
- ☆11Jun 24, 2024Updated last year
- windows下做本地或远程的磁盘镜像的工具,可输出vmdk☆34Updated this week
- A flexible PE loader, loading module in memory. Most of the functions can be inline, compatible for shellcode.☆215Oct 10, 2025Updated 5 months ago
- IDA反-反调试插件 IDAStealth v1.3.3, created 06/28/2011, Jan Newger☆21Apr 4, 2018Updated 7 years ago
- Notes my learning steps about Windows-NT☆23May 18, 2017Updated 8 years ago
- APC DLL Injector with NtQueueApcThread and wake up thread support☆50Sep 21, 2017Updated 8 years ago