nelfo / PGHookerView external linksLinks
PAGE_GUARD based hooking library
☆52Jul 25, 2022Updated 3 years ago
Alternatives and similar repositories for PGHooker
Users that are interested in PGHooker are comparing it to the libraries listed below
Sorting:
- Decoder for VMProtect hwids☆17Aug 1, 2022Updated 3 years ago
- Win32 PE (dll, sys, exe) remote manual mapper written on PHP with injector-client written on C++20☆73Feb 28, 2023Updated 2 years ago
- Bypassing kernel patch protection runtime☆21Feb 19, 2023Updated 2 years ago
- Hooking Heavens Gate in a weekend☆13Jan 1, 2022Updated 4 years ago
- hidden_syscall - syscaller without using syscall instruction in code☆62Jan 23, 2023Updated 3 years ago
- Proof of concept Anti-Cheat plugin.☆57Sep 13, 2024Updated last year
- Patches DSE by swapping both data ptrs located in SeValidateImageHeader && SeValidateImageData☆22Feb 9, 2024Updated 2 years ago
- ☆17Dec 18, 2022Updated 3 years ago
- ☆70Aug 31, 2021Updated 4 years ago
- A proof of concept demonstrating instrumentation callbacks on Windows 10 21h1 with a TLS variable to ensure all syscalls are caught.☆153Nov 14, 2021Updated 4 years ago
- Mapping your code on a 0x1000 size page☆71May 20, 2022Updated 3 years ago
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.☆21Jan 25, 2022Updated 4 years ago
- ☆16Jun 20, 2022Updated 3 years ago
- x86 PE Mutator☆232Dec 24, 2022Updated 3 years ago
- Analysing and defeating PatchGuard universally☆36Nov 4, 2020Updated 5 years ago
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆159Apr 13, 2023Updated 2 years ago
- ☆43Apr 18, 2023Updated 2 years ago
- Multi-Layer Automata-Based Encryption strings☆25Jul 9, 2024Updated last year
- Old way for blocking NMI interrupts☆29Sep 6, 2022Updated 3 years ago
- My research WIP bluepill hypervisor☆40Mar 15, 2023Updated 2 years ago
- This tool will allow you to spoof the return addresses of your functions as well as system functions.☆541Nov 12, 2022Updated 3 years ago
- Hijack NotifyRoutine for a kernelmode thread☆41Jun 4, 2022Updated 3 years ago
- Tool to dump EFI runtime drivers.☆39Feb 23, 2024Updated last year
- Handling C++ & __try exceptions without the need of built-in handlers.☆77Aug 28, 2021Updated 4 years ago
- ☆25May 21, 2021Updated 4 years ago
- EDR/AV Simulation for Malware Development☆13Oct 21, 2023Updated 2 years ago
- ☆12Jun 30, 2019Updated 6 years ago
- Source code on the 1.44MB 3.5 floppy accompanying the Windows NT File System Internals book.☆20Jul 31, 2019Updated 6 years ago
- A lightweight, header-only C++ library for registering and handling custom URL schemes (deep links) on Windows.☆19Jun 9, 2025Updated 8 months ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆265Aug 31, 2022Updated 3 years ago
- A simple way to spoof return addresses using an exception handler☆43Aug 3, 2022Updated 3 years ago
- undetected eac mapper☆169May 3, 2022Updated 3 years ago
- Unreal Engine 4 vulnerability, that allows you to run shellcode directly into the target game process, to load any DLL undetected from mo…☆136Oct 5, 2023Updated 2 years ago
- Allows you to find the use of ScyllaHide, if your program will debug and restore hooking functions bytes.☆26Aug 3, 2019Updated 6 years ago
- Lazy Import technique implementation to call any import in the runtime☆28Jun 16, 2024Updated last year
- ☆23Oct 4, 2022Updated 3 years ago
- Reading/writing memory from kernel-mode☆29Aug 3, 2017Updated 8 years ago
- Compile-Time Calls Obfuscator for C++14+☆51Dec 7, 2023Updated 2 years ago
- ☆16Feb 25, 2023Updated 2 years ago