hooking

There are 32 repositories under hooking topic.

• google / orbit

  C/C++ Performance Profiler

  cpu-profilerdynamic-instrumentationetwhookinginstrumentationperformanceprofilersamplingvisualizer
  Language:C++ 4266

• hasherezade / pe-sieve

  Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

  anti-malwarehookinglibpeconvmalware-analysismemory-forensicspe-analyzerpe-dumperpe-formatpe-sieveprocess-analyzerscans
  Language:C++ 3251

• dweinstein / awesome-frida

  Awesome Frida - A curated list of Frida resources http://www.frida.re/ (https://github.com/frida/frida)

  androidawesomedynamic-analysisfridahookingiosr2frida
  3174
• WidescreenFixesPack

  ThirteenAG / WidescreenFixesPack

  Plugins to make or improve widescreen resolutions support in games, add more features and fix bugs.

  asiaspect-ratiosgameshookingresolutionwidescreenwidescreen-fixwidescreen-fixerwidescreen-fixes
  Language:C 2459

• iddoeldor / frida-snippets

  Hand-crafted Frida examples

  fridahookingjavajava-native-interfacemobile-securityreverse-engineeringobjective-ciosandroidinstrumentationruntime-analysisdynamic-analysisarm64aarch64
  Language:JavaScript 2373

• bytedance / bhook

  :fire: ByteHook is an Android PLT hook library which supports armeabi-v7a, arm64-v8a, x86 and x86_64.

  androidandroidgothookandroidhookandroidplthookbytedancegotgothookhookhookingnativendkpltplthook
  Language:C 2194

• wbenny / injdrv

  proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC

  apchookinginjectionwindows-driver
  Language:C 1200

• canyie / pine

  Dynamic java method hook framework on ART. Allowing you to change almost all java methods' behavior dynamically.

  androidarthookaopaop-frameworkxposedjava-hookhook-frameworkhookingart-runtime
  Language:Java 1197
• dexcalibur

  FrenchYeti / dexcalibur

  [Official] Android reverse engineering tool focused on dynamic instrumentation automation leveraging Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.

  fridahookingsecurity-toolsmobile-securityandroid-securityapksmaliguiandroidanalysisinstrumentation-automationreverse-engineeringdexhookfrida-nodereverse
  Language:JavaScript 1080
• frida-ios-hook

  noobpk / frida-ios-hook

  A tool that helps you easy trace classes, functions, and modify the return values of methods on iOS platform

  frida-ios-hookfridaioshookingtracescript-loaderpentesting-toolsreverse-engineeringpentest
  Language:JavaScript 977

• kubo / plthook

  Hook function calls by replacing PLT(Procedure Linkage Table) entries.

  hookhooking
  Language:C 801

• HoShiMin / HookLib

  The functions interception library written on pure C and NativeAPI with UserMode and KernelMode support

  hookhook-apihookinghooklibhookshooks-apiinterceptintercept-callsx86x86-64
  Language:C 735

• kubo / funchook

  Hook function calls by inserting jump instructions at runtime

  arm64hookhookingx86-32x86-64
  Language:C 680

• wbenny / DetoursNT

  Detours with just single dependency - NTDLL

  detourshookingntdllwindows
  Language:C++ 619
• frida-android-hook

  noobpk / frida-android-hook

  A tool that helps you work with frida easily for Android platform

  androidfridafrida-android-hookhookingpatchingscript-loadertrace
  Language:JavaScript 510

• mar-v-in / ArtHook

  Library for hooking on ART

  androidart-runtimehooking
  Language:Java 483

• cursey / safetyhook

  C++23 procedure hooking library.

  hookhooksdetourdetourshookingcmkr
  Language:C++ 463

• chztbby / RebirthGuard

  Anti-cheat library for Windows C++

  manual-mappingremappingprocess-protectionanti-cheatsec-no-changegame-securityinjectionhookobfuscationhackhookingremapprotect
  Language:C++ 435

• talsec / Free-RASP-Community

  SDK providing app protection and threat monitoring for mobile devices. Works with Flutter, React Native, Android and iOS. Shield your app with free RASP. Detect reverse engineering, root (Magisk), jailbreak, Frida, emulators, bots, tampering and integrity issues, obfuscation, VPN usage, malware, and monitor device identification and fingerprint.

  app-shieldingapplication-securityappsecattack-detectioncloningflutter-raspflutter-securityfraud-detectionfreeraspfrida-detectionhookingrasprasp-libraryrepackaging-detectionreverse-engineeringsecurity-hardeningsecurity-toolsshadow-detectiontampering-detection
  392

• milabs / khook

  Linux Kernel hooking engine (x86)

  linux-kernellinux-kernel-modulehookingx86
  Language:C 340

• FrenchYeti / interruptor

  Human-friendly cross-platform system call tracing and hooking library based on Frida's Stalker

  arm64fridahookinginstrumentationstracesyscall-tracingsyscallssystem-call-tracingtracing
  Language:TypeScript 339

• alphaSeclab / hooking

  Resources About Hooking. For All Platforms. Currently 300+ Tools And 600+ Posts.

  hookingwindows-hookinglinux-hookingandroid-hookingart-hookingfrida-hookingd3dx-hookinginline-hookingapi-hookingsyscall-hooking
  322

• fkie-cad / friTap

  Simplifying SSL/TLS traffic analysis for researchers by making SSL decryption effortless.

  androidandroid-https-capturebinary-analysisfridahookinghttpslinuxnetwork-analysisnetwork-capturenetwork-forensicssecuritysecurity-auditsslssldumptcpdumptls
  Language:JavaScript 319
• CFB

  hugsy / CFB

  Canadian Furious Beaver is a ProcMon-style tool designed only for capturing IRPs sent to any Windows driver.

  windowskernelirphookingfuzzingvulnerability-researchwindows-driverirp-monitor
  Language:C++ 316

• zeroperil / HookDump

  Security product hook detection

  edrhookingredteam-tools
  Language:C++ 316

• gellin / TeamViewer_Permissions_Hook_V1

  A proof of concept injectable C++ dll, that uses naked inline hooking and direct memory modification to change your TeamViewer permissions.

  cpluspluscppdll-injectionhookingmemory-hackingpenetration-testingsecurityteamviewerx86
  Language:C++ 309

• khalladay / hooking-by-example

  A series of increasingly complex programs demonstrating function hooking on 64 bit Windows. Culminating in a program that hooks mspaint to make it always paint orange.

  trampolineshookingdll-injectionreverse-engineering
  Language:C++ 298

• therealdreg / anticuckoo

  A tool to detect and crash Cuckoo Sandbox

  cuckoo-sandboxcuckoo-detectioncuckoo-hookscuckoo-crashhookinganti-sandboxwindowsx86
  Language:C 292

• ryan-weil / HideProcessHook

  DLL that hooks the NtQuerySystemInformation API and hides a process name

  detourhookinginjectionntquerysysteminformation-apiring-3trampoline
  Language:C 285

• therealdreg / DbgChild

  Debug Child Process Tool (auto attach)

  automationchild-processdebugging-toolhookingntdllollydbgreversingstandalonewindowsx64x64dbg-pluginx86
  Language:C 283

• Air14 / airhv

  Simple Intel VT-x hypervisor

  hookinghypervisorwindows
  Language:C++ 280

• unknownv2 / CoreHook

  A library that simplifies intercepting application function calls using managed code and the .NET Core runtime

  dotnethookinghook-functionswindowslinuxdotnet-coredotnetcoredotnet-standarddotnet-libraryarmarm64x86x86-64uwpdetoursarm32csharpcorehook
  Language:C# 273

• AgoraIO / Advanced-Video

  agoraaugmented-reality-applicationscallkitconnection-servicegroupcallhookingpiprtcscreensharingvideo
  Language:C++ 263

• gdabah / distormx

  The ultimate hooking library

  hookinghooksx86-64x86windowslow-leveltrampolinesdistormdetour-hookhooking-library
  Language:C 263

• hasherezade / IAT_patcher

  Persistent IAT hooking application - based on bearparser

  bearparserhookingiatiat-hookingmultiplatformpepe-filepe-format
  Language:C++ 251

• bruhmoment21 / UniversalHookX

  Universal graphical hook for Windows apps.

  hookhookingimguiopenglvulkandirectxgraphicsruntime-hooking
  Language:C++ 219