wes4m / unHookerLinks
Kernel (Ring0) - SSDT unhook driver
☆14Updated 7 years ago
Alternatives and similar repositories for unHooker
Users that are interested in unHooker are comparing it to the libraries listed below
Sorting:
- ☆19Updated 9 years ago
- HTTP/HTTPS/DNS inspector (windows driver)☆26Updated 6 years ago
- The project was upgraded from https://coder.pub/ and supported VS2017. The original author wrote the detailed design ideas documentation…☆19Updated 7 years ago
- ☆21Updated 7 years ago
- PE Infector/Cryptor source code☆15Updated 8 years ago
- User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.☆19Updated 9 years ago
- hooking KiUserApcDispatcher☆24Updated 8 years ago
- Ssdt Hook Detection tool☆13Updated 8 years ago
- Helper utility for debugging windows PE/PE+ loader.☆52Updated 10 years ago
- Enumerate the DLLs/Modules using NtQueryVirtualMemory☆32Updated 10 years ago
- User-mode part of Zerokit platform☆22Updated 6 years ago
- 驱动层拦截web访问源码☆29Updated 7 years ago
- Basic Injector running on x64 machines that is able to load into x64 AND x86 processes☆21Updated 6 years ago
- Kernel-mode file scanner☆18Updated 6 years ago
- The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers☆34Updated 8 years ago
- C++ Code Injector Class☆22Updated 4 years ago
- Analysis and Modification Tool for Executables☆17Updated 6 years ago
- Malwarebytes Antivirus CVE☆8Updated 7 years ago
- WoW64 -> x64☆19Updated 8 years ago
- Simple remote administration tool. Written in c++ and MASM.☆18Updated 7 years ago
- Code Injection technique written in cpp language☆32Updated 7 years ago
- ShellcodeVM☆14Updated 9 years ago
- opensc RAT from http://hi.baidu.com/yycblog/item/b8f0cdf9c1f945c10cd1c8da☆12Updated 11 years ago
- Windows Application Loader Running *.Exe files in Memory against Scrylla☆21Updated 5 years ago
- easy detour-, vftable-, iat- and eathooking☆12Updated 9 years ago
- Legal access: The driver and console app to demonstrate the basic memory access in kernel mode☆9Updated 7 years ago
- A POC for Windows Extension Host hooking☆22Updated 5 years ago
- A Proof-of-Concept win32 DLL that makes use of netbios session token replay to propagate through a Windows Domain☆25Updated 7 years ago
- exploit termdd.sys(support kb4499175)☆59Updated 5 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22Updated 8 years ago