Alternatives and similar repositories for phook:

Users that are interested in phook are comparing it to the libraries listed below

• BreakingMalwareResearch / CFGExceptions
  Adding exceptions to Microsoft's Control Flow Guard (CFG)
  ☆58Updated 8 years ago
• OsandaMalith / ApiMon
  A simple API monitor for Windbg
  ☆63Updated 7 years ago
• thalium / idatag
  IDA plugin to explore and browse tags
  ☆54Updated 5 years ago
• JKornev / hijacken
  Analyze and attack windows applications using dll hijacking vulnerabilities
  ☆56Updated 5 years ago
• hMihaiDavid / hooks
  A DLL that performs IAT hooking
  ☆27Updated 6 years ago
• deroko / SPPLUAObjectUacBypass
  ☆45Updated 6 years ago
• swwwolf / obderef
  Decrement Windows Kernel for fun and profit
  ☆38Updated 7 years ago
• nccgroup / ncloader
  A session-0 capable dll injection utility
  ☆76Updated 7 years ago
• Truneski / WindowsKernelProgramming-Exercises
  ☆49Updated 5 years ago
• reb311ion / emerald
  Import DynamoRIO drcov code coverage data into Ghidra
  ☆43Updated last year
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 7 years ago
• maldevel / driver-loader
  Load a Windows Kernel Driver
  ☆92Updated 7 years ago
• 86hh / POC-viruses
  POC viruses I have created to demo some ideas
  ☆59Updated 5 years ago
• hasherezade / pe_utils
  A set of small utilities, helpers for PIN tracers
  ☆33Updated last year
• Sentinel-One / SKREAM
  SentinelOne's KeRnel Exploits Advanced Mitigations
  ☆53Updated 6 years ago
• SouhailHammou / KernelSymbolsHelper
  Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…
  ☆54Updated 5 years ago
• deroko / activationcontexthook
  ☆33Updated 7 years ago
• georgenicolaou / HeavenInjector
  Simple proof of concept code for injecting libraries on 64bit processes from a 32bit process
  ☆94Updated 6 years ago
• rwfpl / rewolf-ldrdebug
  Helper utility for debugging windows PE/PE+ loader.
  ☆52Updated 10 years ago
• JKornev / cfgdump
  Windbg extension that allows you analyze Control Flow Guard map
  ☆34Updated 3 years ago
• SouhailHammou / Drivers
  Windows Drivers
  ☆97Updated 6 years ago
• zer0fl4g / DebugDetector
  ☆116Updated 12 years ago
• hasherezade / paramkit
  A small library helping to parse commandline parameters (for C/C++)
  ☆57Updated last year
• int0 / ProcessIsolator
  ☆80Updated 7 years ago
• AndreyBazhan / DbgPkg
  Scripts to prepare Windows system for debugging.
  ☆30Updated 4 years ago
• SekoiaLab / BinaryInjectionMitigation
  Two tools used during our analysis of the Microsoft binary injection mitigation implemented in Edge TH2.
  ☆53Updated 8 years ago
• tandasat / cs_driver
  A sample project for using Capstone from a driver in Visual Studio 2015
  ☆34Updated 8 years ago
• atlantis2013 / Evasion-Tools
  Anti-technique Codes, Detection of Anti-technique codes
  ☆38Updated 11 years ago
• RceNinja / Re-Scripts
  ☆33Updated 3 years ago
• nettitude / DLLInjection
  DLL Injection Library & Tools
  ☆72Updated 8 years ago