vic4key / py-hooking
Sometimes, you need to manipulate low-level functionality (C APIs, etc) from high-level languages (Python). Eg. Force the low-level calls directly to your own Python override functions. This repo will help you do that.
☆12Updated 3 months ago
Related projects: ⓘ
- Wow64 Heaven's Gate Hook☆25Updated 3 years ago
- genpatch is IDA plugin that generates a python script for patching binary☆30Updated 9 months ago
- Taking advantage of CRT initialization, to get away with hooking protected applications☆41Updated last year
- A Windows API hooking library !☆30Updated 2 years ago
- ollvm 4.0 using clang 10.0.1☆12Updated 3 years ago
- EDR PoC WIP LLC☆10Updated 7 months ago
- Dump PDB Symbols including support for Bochs Debugging Format (with wine support)☆14Updated last year
- idax: IDASDK extension libraries☆15Updated last month
- A plugin for x64dbg.☆22Updated 3 years ago
- Elevate arbitrary MSR writes to kernel execution.☆16Updated last year
- paste string formatted byte data block into x64dbg easy.☆38Updated 3 years ago
- Code Integrity Violation Spotter☆16Updated 3 months ago
- devirtualization vmprotect☆59Updated last year
- Anti-Analysis technique, trick the debugger by Hiding events from it.☆18Updated 3 years ago
- Detour hooking IRQ1 ISR through IDT (Interrupt Descriptor Table)☆17Updated last year
- WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API☆19Updated 2 years ago
- FastSymApi - A Fast API PDB Symbol Cache Server that efficiently caches and compresses PDBs on disk for quick and repeated retrieval.☆17Updated this week
- Triton based symbolic emulator☆16Updated last year
- Based on nt5src☆15Updated last year
- x64dbg plugin for running python3 script. Focus on doing malware analyst and unpacking☆37Updated 2 months ago
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…☆26Updated last year
- Delphi-Kawaii is a plugin for Ida Pro.☆16Updated last year
- ☆19Updated this week
- ☆33Updated last year
- Fix VMProtect 3.xx (tested 3.0.9 to 3.5.0)☆15Updated 2 years ago
- https://www.huorong.cn/☆14Updated 5 months ago
- Plugin to patch and remove ASLR from PE files on x64dbg☆36Updated last year
- An example of how to use Microsoft Windows Warbird technology☆24Updated last year
- UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.☆44Updated last year
- ☆44Updated 7 months ago