Results for "unhooking"

Claude Code Claude Desktop GitHub Copilot Cursor Windsurf Cline Zed JetBrains

📄SKILL.md 🤖CLAUDE.md ⚡Claude Commands 📐.cursorrules 📐Cursor Rules 🕹️AGENTS.md 🧬codex.md 🏄.windsurfrules 🔧.clinerules 🧑‍✈️Copilot Instructions

All Development Operations Data Product Marketing Customer Design Sales

74 skills found · Page 1 of 3

outflanknl / Dumpert

1.6k

LSASS memory dumper using direct system calls and API unhooking.

universal

Updated 2d ago

GetRektBoy724 / SharpUnhooker

409

C# Based Universal API Unhooker

universal

av-evasioncsharpdll+4

Updated 25d ago

mgeeky / UnhookMe

349

UnhookMe is an universal Windows API resolver & unhooker addressing problem of invoking unmonitored system calls from within of your Red Teams malware

universal

Updated 5d ago

timwhitez / Doge Gabh

330

GetProcAddressByHash/remap/full dll unhooking/Tartaru's Gate/Spoofing Gate/universal/Perun's Fart/Spoofing-Gate/EGG/RecycledGate/syswhisper/RefleXXion golang implementation

universal

Updated 18d ago

CylanceVulnResearch / ReflectiveDLLRefresher

326

Universal Unhooking

universal

Updated 3mo ago

SaadAhla / UnhookingPatch

313

Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime

universal

Updated 19d ago

hwbp / CLR Unhook

209

Modern security products (CrowdStrike, Bitdefender, SentinelOne, etc.) hook the nLoadImage function inside clr.dll to intercept and scan in-memory .NET assembly loads. This tool unhooks that function.

universal

Updated 18d ago

SaadAhla / Ntdlll Unhooking Collection

204

different ntdll unhooking techniques : unhooking ntdll from disk, from KnownDlls, from suspended process, from remote server (fileless)

universal

Updated 2d ago

reveng007 / ReflectiveNtdll

180

A Dropper POC with a focus on aiding in EDR evasion, NTDLL Unhooking followed by loading ntdll in-memory, which is present as shellcode (using pe2shc by @hasherezade). Payload encryption via SystemFucntion033 NtApi and No new thread via Fiber

universal

antivirusbypassbypass-antivirus+9

Updated 1mo ago

zimnyaa / NoWatch

147

Implant drop-in for EDR testing

universal

atomic-red-teamevasioninjection+3

Updated 4mo ago

ars3n11 / MineSweeper

146

Windows user-land hooks manipulation tool.

universal

edrhooksunhooking+1

Updated 5mo ago

Signal-Labs / Iat Unhook Sample

138

(First Public?) Sample of unhooking ntdll (All Exports & IAT imports) hooks in Rust using in-memory disassembly, avoiding direct syscalls and all hooked functions (incl. hooked NtProtectVirtualMemory)

universal

Updated 1mo ago

trickster0 / LdrLoadDll Unhooking

134

LdrLoadDll Unhooking

universal

Updated 19d ago

plackyhacker / Peruns Fart

117

Perun's Fart (Slavic God's Luck). Another method for unhooking AV and EDR, this is my C# version.

universal

Updated 3mo ago

unkvolism / Fuck Etw

116

Bypass the Event Trace Windows(ETW) and unhook ntdll.

universal

etw-evasionevasionmalware+2

Updated 1mo ago

frkngksl / Celeborn

111

Userland API Unhooker Project

universal

Updated 3d ago

S3N4T0R-0X0 / Hunter

Охотник (Hunter) is a simple Adversary Simulation tool developed for achieves stealth through API unhooking, direct and indirect syscalls, Event Tracing for Windows (ETW) suppression, process hollowing, stack spoofing, polymorphic encryption, and comprehensive anti-analysis mechanisms.

universal

Updated 2d ago

XaFF-XaFF / ZwProcessHollowing

ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption

universal

hacking-toolprocess-hollowingrunpe+2

Updated 2d ago

eversinc33 / MalwareAdventurez

My adventures in learning about different userland malware techniques, such as syscalls, injection, unhooking or sandbox evasion.

universal

Updated 24d ago

MaorSabag / Paruns Fart

Just another ntdll unhooking using Parun's Fart technique

universal

Updated 3mo ago