Alternatives and similar repositories for py-hooking

Users that are interested in py-hooking are comparing it to the libraries listed below

• 0vercl0k / inject
  Yet another Windows DLL injector.
  ☆39Updated 4 years ago
• killvxk / awesome-obfuscations
  ☆53Updated 3 months ago
• Fyyre / proxy_dll
  Taking advantage of CRT initialization, to get away with hooking protected applications
  ☆47Updated 3 years ago
• h311d1n3r / LetsHook
  A Windows API hooking library !
  ☆31Updated 3 years ago
• keowu / winsystemprogramming
  Learn Winapi in this Repo with examples, to understand its abstraction in reverse engineering for Windows.
  ☆10Updated 3 years ago
• NewWorldComingSoon / llvm-msvc-windows-driver-template
  Windows kernel driver template for cmkr and llvm-msvc.
  ☆34Updated last year
• ntoskrnl7 / ldk
  Load Dll into Kernel space
  ☆38Updated 3 years ago
• aphage / wow64-gate-hook
  Wow64 Heaven's Gate Hook
  ☆29Updated 4 years ago
• Rantanen / ghidra-minidump-loader
  Windows Minidump loader for Ghidra
  ☆29Updated 3 years ago
• gognl / VMBR
  A VMBR (Virtual-Machine Based Rootkit) which runs a guest OS and sends the attacker its data
  ☆28Updated last year
• buzzer-re / x64dbg-ASLR-Removal
  Plugin to patch and remove ASLR from PE files on x64dbg
  ☆39Updated 3 years ago
• gabriellandau / CISpotter
  Code Integrity Violation Spotter
  ☆17Updated last year
• sterrasec / genpatch
  genpatch is IDA plugin that generates a python script for patching binary
  ☆37Updated last year
• therealdreg / ida_bochs_windows
  Helper script for Windows kernel debugging with IDA Pro on native Bochs debugger (including PDB symbols)
  ☆61Updated 2 years ago
• orca-eaa5a / mac-defender
  ☆11Updated 3 years ago
• aaaddress1 / wow64Jit
  Call 32bit NtDLL API directly from WoW64 Layer
  ☆61Updated 5 years ago
• Inndy / idapython-cheatsheet
  scripting IDA like a Pro
  ☆24Updated 5 years ago
• sh4m2hwz / devirt_vmp
  devirtualization vmprotect
  ☆62Updated 2 years ago
• ryan-weil / Code-Cave
  Injects position-dependent code into a code cave in an executable file, and applies relocations.
  ☆23Updated 2 years ago
• nanabingies / CVE-2021-21551
  Dell Driver EoP (CVE-2021-21551)
  ☆26Updated 2 years ago
• sreeharshabandi / Captain
  Process Creation, Image Load and Thread Creation Notification
  ☆13Updated 2 years ago
• r3bb1t / vmp_analyzer
  ☆37Updated 2 years ago
• mgeeky / PE-library
  Lightweight Portable Executable parsing library and a demo peParser application.
  ☆80Updated 2 years ago
• therealdreg / symseghelper
  Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode
  ☆19Updated 2 years ago
• zodiacon / WinEventHooks
  SetWinEventHook Sample
  ☆49Updated 2 years ago
• secrary / idenLibX
  idenLib (Library Function Identification) plugin for x32dbg
  ☆41Updated 6 years ago
• ElvisBlue / emotet-deobfuscator
  IDA plugin to deobfuscate emotet CFF
  ☆18Updated 3 years ago
• hasherezade / libpeconv_tpl
  A ready-made template for a project based on libpeconv.
  ☆50Updated 2 weeks ago
• P1tt1cus / FastSymApi
  FastSymApi - A Fast API PDB Symbol Cache Server that efficiently caches and compresses PDBs on disk for quick and repeated retrieval.
  ☆18Updated 4 months ago
• Colton1skees / WinTTD
  Reverse engineered API for Microsoft's Time Travel Debugger
  ☆35Updated last year