myfreeer / dll-hijack

Related projects ⓘ

Alternatives and complementary repositories for dll-hijack

• adamhlt / Basic-Rootkit
  POC Ring3 Windows Rootkit (x86 / x64) - Hide processes and files
  ☆52Updated last year
• hasherezade / dll_injector
  A simple commandline injector using classic DLL injection
  ☆137Updated 2 years ago
• xAranaktu / Winsock-Hook
  hooking winsock send & recv in order to read all traffic of a process
  ☆43Updated 6 years ago
• samshine / ScyllaHideDetector2
  Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.
  ☆24Updated 5 years ago
• bb107 / WinSudo
  Execute commands as local system.
  ☆61Updated 5 years ago
• yubie-re / vmp-virtualprotect-bypass
  Disables virtualprotect checks/hooks so you can modify memory and change memory protection in binaries protected by VMProtect.
  ☆114Updated 3 years ago
• BestForever / VMProtect
  VMProtect Leaked Source Code
  ☆24Updated last year
• 0x410c / ClrDumper
  Dump .net assembly from a native loader which uses ClrCreateinstance
  ☆53Updated 2 years ago
• zer0condition / Reversing-a-signed-driver
  Reverse Engineering a signed kernel driver packed and virtualized with VMProtect 3.6
  ☆103Updated last year
• TomashuTTTT7 / Hidecall
  Hide function calls to prevent reverse-engineering
  ☆65Updated 3 years ago
• SamuelTulach / meme-rw
  Archive R/W into any protected process by changing the value of KTHREAD->PreviousMode
  ☆146Updated 2 years ago
• void-stack / Hypervisor-Detection
  Detects virtual machines and malware analysis environments
  ☆115Updated 2 years ago
• alal4465 / KernelMon
  A ProcMon-esque tool for monitoring Windows Kernel Drivers
  ☆53Updated 3 years ago
• UserExistsError / InjectDll
  Inject a Dll from memory
  ☆41Updated 5 years ago
• armvirus / hook-scanner
  Scans all modules in target process for jmp/int3 hooks dissassembles then and follows jmps to destination.
  ☆71Updated last year
• SaulBerrenson / WinApiObfuscator
  Header only library for obfuscation import winapi functions.
  ☆32Updated 3 years ago
• KiFilterFiberContext / VMP3-Disasm
  Experimental disassembler for x86 binaries virtualized by VMProtect 3
  ☆92Updated 2 years ago
• mike1k / HardwareBreakpoint
  X86/X64 Hardware Breakpoint Manager
  ☆39Updated 3 years ago
• thesecretclub / SandboxBootkit
  Bootkit for Windows Sandbox to disable DSE/PatchGuard.
  ☆261Updated last month
• hotline1337 / umium
  Class containing Anti-RE, Anti-Debug and Anti-Hook methods. Made for C++/CLI
  ☆101Updated 2 years ago
• Lima-X / Win32.Nebula
  A packed & protected Module Loader and more, for 64-bit Windows
  ☆28Updated 3 years ago
• Fyyre / proxy_dll
  Taking advantage of CRT initialization, to get away with hooking protected applications
  ☆43Updated 2 years ago
• kkent030315 / anymapper
  x64 Windows kernel driver mapper, inject unsigned driver using anycall
  ☆114Updated 9 months ago
• x0reaxeax / rwlazer64
  Win64 UEFI Driver-based tool for unrestricted memory R/W
  ☆26Updated 2 years ago
• kkent030315 / anycall
  x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration
  ☆226Updated 2 years ago
• mibho / x64dbg-vmp-trace
  unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared u…
  ☆52Updated 9 months ago
• nefarius / socksifier
  One DLL to redirect them all to a SOCKS5 server.
  ☆41Updated 9 months ago
• Irval1337 / HideProcessHook
  Simple NtQuerySystemInformation hook for your hacking apps.
  ☆41Updated 3 years ago
• guided-hacking / GuidedHacking-Injector
  The BEST DLL Injector Library.
  ☆21Updated 2 months ago