hooking

There are 29 repositories under hooking topic.

• google / orbit

  C/C++ Performance Profiler

  cpu-profilerdynamic-instrumentationetwhookinginstrumentationperformanceprofilersamplingvisualizer
  Language:C++ 4058

• dweinstein / awesome-frida

  Awesome Frida - A curated list of Frida resources http://www.frida.re/ (https://github.com/frida/frida)

  androidawesomedynamic-analysisfridahookingiosr2frida
  2938

• hasherezade / pe-sieve

  Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

  pe-formathookingpe-dumperpe-analyzerlibpeconvprocess-analyzerscansanti-malwarepe-sievemalware-analysismemory-forensics
  Language:C++ 2903

• iddoeldor / frida-snippets

  Hand-crafted Frida examples

  aarch64androidarm64dynamic-analysisfridahookinginstrumentationiosjavajava-native-interfacemobile-securityobjective-creverse-engineeringruntime-analysis
  Language:JavaScript 2168
• WidescreenFixesPack

  ThirteenAG / WidescreenFixesPack

  Plugins to make or improve widescreen resolutions support in games, add more features and fix bugs.

  asiaspect-ratiosgameshookingresolutionwidescreenwidescreen-fixwidescreen-fixerwidescreen-fixes
  Language:C 2158

• bytedance / bhook

  :fire: ByteHook is an Android PLT hook library which supports armeabi-v7a, arm64-v8a, x86 and x86_64.

  androidhookplthookpltgothookgotnativendkhookingbytedanceandroidplthookandroidgothookandroidhook
  Language:C 1962

• wbenny / injdrv

  proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC

  windows-driverapcinjectionhooking
  Language:C 1047
• dexcalibur

  FrenchYeti / dexcalibur

  [Official] Android reverse engineering tool focused on dynamic instrumentation automation leveraging Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.

  fridahookingsecurity-toolsmobile-securityandroid-securityapksmaliguiandroidanalysisinstrumentation-automationreverse-engineeringdexhookfrida-nodereverse
  Language:JavaScript 1026

• canyie / pine

  Dynamic java method hook framework on ART. Allowing you to change almost all java methods' behavior dynamically.

  androidarthookaopaop-frameworkxposedjava-hookhook-frameworkhookingart-runtime
  Language:Java 931
• frida-ios-hook

  noobpk / frida-ios-hook

  A tool that helps you easy trace classes, functions, and modify the return values of methods on iOS platform

  fridafrida-ios-hookhookingiospentestpentesting-toolsreverse-engineeringscript-loadertrace
  Language:JavaScript 825

• Zeex / subhook

  Simple hooking library for C/C++ (x86 only, 32/64-bit, no dependencies)

  hookingx86ccpluspluscmake
  Language:C 779

• HoShiMin / HookLib

  The functions interception library written on pure C and NativeAPI with UserMode and KernelMode support

  hookhook-apihookinghooklibhookshooks-apiinterceptintercept-callsx86x86-64
  Language:C 709

• kubo / plthook

  Hook function calls by replacing PLT(Procedure Linkage Table) entries.

  hookhooking
  Language:C 680

• kubo / funchook

  Hook function calls by inserting jump instructions at runtime

  arm64hookhookingx86-32x86-64
  Language:C 609

• wbenny / DetoursNT

  Detours with just single dependency - NTDLL

  detourshookingwindowsntdll
  Language:C++ 583

• mar-v-in / ArtHook

  Library for hooking on ART

  androidhookingart-runtime
  Language:Java 469
• frida-android-hook

  noobpk / frida-android-hook

  A tool that helps you work with frida easily for Android platform

  frida-android-hookfridaandroidhookingtracescript-loaderpatching
  Language:JavaScript 388

• chztbby / RebirthGuard

  Anti-cheat library for Windows C++

  manual-mappingremappingprocess-protectionanti-cheatsec-no-changegame-securityinjectionhookobfuscationhackhookingremapprotect
  Language:C++ 348

• FrenchYeti / interruptor

  Human-friendly cross-platform system call tracing and hooking library based on Frida's Stalker

  fridahookinginstrumentationtracingsyscallssystem-call-tracingarm64syscall-tracingstrace
  Language:TypeScript 313

• gellin / TeamViewer_Permissions_Hook_V1

  A proof of concept injectable C++ dll, that uses naked inline hooking and direct memory modification to change your TeamViewer permissions.

  securitymemory-hackinghookingx86penetration-testingteamviewerdll-injectioncpluspluscpp
  Language:C++ 310

• milabs / khook

  Linux Kernel hooking engine (x86)

  linux-kernellinux-kernel-modulehookingx86
  Language:C 304

• zeroperil / HookDump

  Security product hook detection

  edrhookingredteam-tools
  Language:C++ 300
• CFB

  hugsy / CFB

  Canadian Furious Beaver is a ProcMon-style tool designed only for capturing IRPs sent to any Windows driver.

  windowskernelirphookingfuzzingvulnerability-researchwindows-driverirp-monitor
  Language:C++ 298

• alphaSeclab / hooking

  Resources About Hooking. For All Platforms. Currently 300+ Tools And 600+ Posts.

  hookingwindows-hookinglinux-hookingandroid-hookingart-hookingfrida-hookingd3dx-hookinginline-hookingapi-hookingsyscall-hooking
  290

• therealdreg / anticuckoo

  A tool to detect and crash Cuckoo Sandbox

  cuckoo-sandboxcuckoo-detectioncuckoo-hookscuckoo-crashhookinganti-sandboxwindowsx86
  Language:C 285

• cursey / safetyhook

  C++23 procedure hooking library.

  cmkrdetourdetourshookhookinghooks
  Language:C++ 272

• AgoraIO / Advanced-Video

  augmented-reality-applicationscallkithookinggroupcallscreensharingagoraconnection-servicertcpipvideo
  Language:C++ 263

• therealdreg / DbgChild

  Debug Child Process Tool (auto attach)

  x64x86debugging-toolhookingx64dbg-pluginollydbgstandalonewindowsntdllreversingautomationchild-process
  Language:C 263

• unknownv2 / CoreHook

  A library that simplifies intercepting application function calls using managed code and the .NET Core runtime

  armarm32arm64corehookcsharpdetoursdotnetdotnet-coredotnet-librarydotnet-standarddotnetcorehook-functionshookinglinuxuwpwindowsx86x86-64
  Language:C# 255

• ryan-weil / HideProcessHook

  DLL that hooks the NtQuerySystemInformation API and hides a process name

  hookingntquerysysteminformation-apiinjectionring-3detourtrampoline
  Language:C 254

• gdabah / distormx

  The ultimate hooking library

  hookinghooksx86-64x86windowslow-leveltrampolinesdistormdetour-hookhooking-library
  Language:C 249

• talsec / Free-RASP-Community

  SDK providing app protection and threat monitoring for mobile devices, available for Flutter, Cordova, Android and iOS.

  rasptampering-detectionfraud-detectionrepackaging-detectioncloningreverse-engineeringhookingsecurity-toolsapplication-securityappsecattack-detectionflutter-raspflutter-securityfrida-detectionsecurity-hardeningshadow-detectionapp-shieldingrasp-libraryfreerasp
  243

• hasherezade / IAT_patcher

  Persistent IAT hooking application - based on bearparser

  peiathookingmultiplatformiat-hookingpe-filepe-formatbearparser
  Language:C++ 242

• khalladay / hooking-by-example

  A series of increasingly complex programs demonstrating function hooking on 64 bit Windows. Culminating in a program that hooks mspaint to make it always paint orange.

  dll-injectionhookingreverse-engineeringtrampolines
  Language:C++ 241

• fkie-cad / friTap

  The goal of this project is to help researchers to analyze traffic encapsulated in SSL or TLS.

  fridasslsecurityhookingnetwork-analysisnetwork-forensicsandroidbinary-analysis
  Language:JavaScript 234

• Air14 / airhv

  Simple Intel VT-x hypervisor

  hookinghypervisorwindows
  Language:C++ 219