Alternatives and similar repositories for dll-hijack:

Users that are interested in dll-hijack are comparing it to the libraries listed below

• samshine / ScyllaHideDetector2
  Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.
  ☆24Updated 5 years ago
• KNSoft / KNSoft.SlimDetours
  An improved Detours.
  ☆49Updated last month
• ccman32 / WMISpoofer
  THIS PROJECT IS DISCONTINUED! WMISpoofer allows you to spoof information which other applications read from the Windows Management Instru…
  ☆58Updated 7 years ago
• killvxk / awesome-obfuscations
  ☆48Updated 11 months ago
• bb107 / WinSudo
  Execute commands as local system.
  ☆63Updated 5 years ago
• yubie-re / vmp-virtualprotect-bypass
  Disables virtualprotect checks/hooks so you can modify memory and change memory protection in binaries protected by VMProtect.
  ☆118Updated 3 years ago
• sh4m2hwz / VMPSimplifierUltra
  Simplifier vmp ultra
  ☆15Updated last year
• void-stack / Hypervisor-Detection
  Detects virtual machines and malware analysis environments
  ☆117Updated 2 years ago
• 0x410c / ClrDumper
  Dump .net assembly from a native loader which uses ClrCreateinstance
  ☆54Updated 2 years ago
• MiroKaku / Musa.Core
  Use ntdll/ntoskrnl to implement Kernel32, Advapi32 and other APIs. It includes user-mode and kernel-mode.
  ☆72Updated 3 months ago
• mandiant / jitm
  JITM is an automated tool to bypass the JIT Hooking protection on a .NET sample.
  ☆50Updated 4 years ago
• utoni / PastDSE
  DSE bypass using a leaked cert and adjusting the current clock.
  ☆146Updated 2 years ago
• mike1k / HardwareBreakpoint
  X86/X64 Hardware Breakpoint Manager
  ☆40Updated 3 years ago
• ergrelet / themida-spotter-bn
  A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.
  ☆77Updated 6 months ago
• ergrelet / Scylla
  Fork of Scylla with additional fixes and Python bindings.
  ☆38Updated 6 months ago
• SaulBerrenson / WinApiObfuscator
  Header only library for obfuscation import winapi functions.
  ☆32Updated 3 years ago
• zodiacon / WinEventHooks
  SetWinEventHook Sample
  ☆43Updated last year
• fatrolls / Quick-Unpack
  Quick Unpacker x86 / x64
  ☆37Updated 7 months ago
• thesecretclub / SandboxBootkit
  Bootkit for Windows Sandbox to disable DSE/PatchGuard.
  ☆268Updated 3 months ago
• TomashuTTTT7 / Hidecall
  Hide function calls to prevent reverse-engineering
  ☆67Updated 3 years ago
• hfiref0x / Misc
  Miscellaneous Code and Docs
  ☆77Updated last year
• dr4k0nia / Unscrambler
  Universal unpacker and fixer for a number of modded ConfuserEx protections
  ☆103Updated 4 years ago
• FunnyWhaleDev / AlterLoadDll
  Load dll with undocumented functions and debug symbols
  ☆46Updated 6 months ago
• byte2mov / anti-process
  stop any process from looking into your process by hooking.
  ☆16Updated 9 months ago
• Demonslay335 / DotNetMonitor
  Think APIMonitor, but for .NET binaries.
  ☆53Updated last year
• mike1k / pepp
  C++ library for parsing and manipulating PE files statically and dynamically.
  ☆87Updated last year
• mrexodia / driver_unpacking
  Ghetto user mode emulation of Windows kernel drivers.
  ☆133Updated 3 months ago
• Fyyre / proxy_dll
  Taking advantage of CRT initialization, to get away with hooking protected applications
  ☆44Updated 2 years ago
• mike1k / ImportCallObfuscator
  Obfuscate calls to imports by patching in stubs
  ☆66Updated 3 years ago
• apekros / binja_sigmaker
  Create and find signatures in Binary Ninja
  ☆25Updated last year