wes4m / unHooker
Kernel (Ring0) - SSDT unhook driver
☆14Updated 7 years ago
Alternatives and similar repositories for unHooker:
Users that are interested in unHooker are comparing it to the libraries listed below
- A Proof-of-Concept win32 DLL that makes use of netbios session token replay to propagate through a Windows Domain☆25Updated 6 years ago
- Ssdt Hook Detection tool☆13Updated 8 years ago
- PE Infector/Cryptor source code☆15Updated 7 years ago
- Enumerate the DLLs/Modules using NtQueryVirtualMemory☆32Updated 9 years ago
- HTTP/HTTPS/DNS inspector (windows driver)☆26Updated 6 years ago
- User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.☆19Updated 9 years ago
- ☆20Updated 7 years ago
- The project was upgraded from https://coder.pub/ and supported VS2017. The original author wrote the detailed design ideas documentation…☆19Updated 7 years ago
- Windows Application Loader Running *.Exe files in Memory against Scrylla☆21Updated 5 years ago
- Kernel-Mode rootkit that connects to a remote server to send & recv commands☆31Updated 6 years ago
- 驱动层拦截web访问源码☆29Updated 6 years ago
- Legal access: The driver and console app to demonstrate the basic memory access in kernel mode☆9Updated 7 years ago
- A MITM proxy server for reflective DLL injection through WinINet☆15Updated 6 years ago
- Bypass HackShield several specific SSDT hook in Ring0☆23Updated 10 years ago
- ☆18Updated 5 years ago
- ☆19Updated 9 years ago
- ☆25Updated 4 years ago
- WoW64 -> x64☆19Updated 8 years ago
- Simple library to handle PE files loading, relocating, get/set data, ..., in addition to process handling☆32Updated 5 years ago
- reversed emet tool☆24Updated 12 years ago
- Kernel-mode file scanner☆18Updated 6 years ago
- x86/x64 dll injector☆30Updated 2 years ago
- opensc RAT from http://hi.baidu.com/yycblog/item/b8f0cdf9c1f945c10cd1c8da☆12Updated 10 years ago
- hooking KiUserApcDispatcher☆24Updated 7 years ago
- Data and structures regarding the research done on WdFilter☆12Updated 4 years ago
- Basic Injector running on x64 machines that is able to load into x64 AND x86 processes☆21Updated 5 years ago
- Kinject - kernel dll injector, currently available in x86 version, will be updated to x64 soon.☆32Updated 9 years ago
- Simple PE packer with RtlCompressBuffer☆21Updated 9 years ago
- Open Source Libraries Collection☆24Updated 9 years ago
- ☆10Updated 8 years ago