xAranaktu / Winsock-Hook
hooking winsock send & recv in order to read all traffic of a process
☆42Updated 6 years ago
Related projects: ⓘ
- A ProcMon-esque tool for monitoring Windows Kernel Drivers☆50Updated 3 years ago
- force delete runing .exe application file.or delete any locked file☆68Updated last year
- x64 syscall caller in C++.☆84Updated 6 years ago
- windows kernel deriver loader(pro)☆47Updated 3 years ago
- Hide DLL / Hide Module / Hide Dynamic Link Library☆98Updated 5 years ago
- Kernel-Mode extended version of https://github.com/microsoft/Detours☆132Updated 2 years ago
- ☆47Updated 5 years ago
- Windows Driver Kit Extesion Header (Undoc)☆132Updated 2 years ago
- Vectored Exception Handling Hooking Class☆143Updated 5 years ago
- Noninvasive debugging plugin for X64Dbg☆86Updated last year
- Lightweight and flexible library to load and communicate with kernel drivers on Windows.☆75Updated 5 months ago
- A simple open source memory hooking library for Windows x86/x64☆87Updated 3 years ago
- APEX-EACBypass(usermode)☆45Updated 5 years ago
- fix vmprotect import function used unicorn-engine.☆91Updated last year
- Global DLL injector☆63Updated 3 years ago
- This x64dbg plugin sets the page protection for memory mapped views in scenarios which cause NtProtectVirtualMemory to fail.☆105Updated 7 years ago
- An open-source x86 / x86-64 hooking library for Windows.☆87Updated last year
- ☆36Updated 7 years ago
- An Ark tool project,run on Win7 x86/x64☆107Updated 7 years ago
- ☆88Updated 2 years ago
- Kernel LdrLoadDll injector☆258Updated 5 years ago
- Use ntdll/ntoskrnl to implement Kernel32, Advapi32 and other APIs. It includes user-mode and kernel-mode.☆61Updated 3 weeks ago
- Example Windows Kernel-mode Driver which enumerates running processes.☆51Updated 2 years ago
- A customizable process dumper.☆130Updated 5 years ago
- 可在非测试模式下符号化读取内核内存。Kernel memory can be read symbolically in non test mode。☆100Updated 2 years ago
- 滥用cow机制进行全局注入☆89Updated 3 years ago
- Elevate a process to be a protected process☆140Updated 5 years ago
- Code injection by hijacking threads in Windows 32-bit applications☆42Updated 5 years ago
- ☆62Updated 5 years ago
- GUI Kernel driver process protect tool☆36Updated 6 years ago