SkillAgentSearch skills...

Blook

A modern C++ library for hacking.

GenerateConvertImprove

Install / Use

/learn @std-microblock/Blook
About this skill

Quality Score

0/100

Supported Platforms

Universal

README

[!WARNING] This project is in a relatively early stage and is not ready for production. Use at your own risk.
此项目仍较早期,不建议实际使用。

<div align="center"> <img src="./resources/icon.webp" width="270"> <h1 style="margin-top: -30px;">&nbsp;&nbsp;blook</h1> <h4>A modern C++ library for hacking.</h4> </div>

So what?

Inline hook a function? Easy!

auto process = blook::Process::self();
auto hook = process->module("user32.dll").value()
                   ->exports("MessageBoxA")
                   ->inline_hook();
    hook->install([=](int64_t a, char *text, char *title, int64_t b) {
        // DRY: All types are only written once!
        return hook->call_trampoline<int64_t>(a, "oh yes", text, b);
    });

MessageBoxA(nullptr, "hi", "hi", 0);

...hook more? Sure!

auto process = blook::Process::self();
auto mod = process->module("user32.dll").value();
for (auto& func: mod.obtain_exports()) {
    auto hook = mod
                ->exports(func)
                ->inline_hook();
    hook->install([=](int64_t a) -> int64_t {
        // Yes, capture anything you want!
        std::cout << "Someone called: " << std::hex << func << "\n";
        return hook->call_trampoline<int64_t>(a);
    });
}

How about hooking a method that's not exported?

auto process = blook::Process::self();
auto mod = process->module().value();
// Let's find the specific function in .text (Code Segment) with blook's AOB shortcut!.
auto text_segment = mod->section(".text").value();
using ANYp = blook::memory_scanner::ANYPattern;
auto hook = text_segment.find_one({
    0x55, 0x56, 0x57, 0x48, 0x83, 0xec, 0x70, 0x48, 0x8d, 0x6c, 0x24, 0x70,
    0x48, 0xc7, 0x45, 0xf8, 0xfe, 0xff, 0xff, 0xff, 0x48, 0x89, 0xce, 0x48,
    0x8d, 0x7d, 0xd0, 0x48, 0x89, 0xfa, 0xe8, 0x44, ANYp, ANYp, ANYp
})->sub(-0x28).as_function().inline_hook();

// And now it's easy to hook it.
hook->install([=](int64_t a) -> int64_t {
    std::cout << "Someone called some internal function!\n";
    return hook->call_trampoline<int64_t>(a);
});

Getting started

Use with xmake

package("blook")
    set_description("A modern C++ library for hacking.")
    set_license("GPL-3.0")

    add_urls("https://github.com/std-microblock/blook.git")

    add_configs("shared", {description = "Build shared library.", default = false, type = "boolean", readonly = true})

    if is_plat("windows") then
        add_syslinks("advapi32")
    end

    add_deps("zasm")

    on_install("windows", function (package)
        import("package.tools.xmake").install(package, {}, {target = "blook"})
    end)

Save this to deps/blook.lua, and use blook like:


includes("deps/blook.lua")
add_requires("blook")

target(...)
    add_packages("blook")

Platforms

  • std::function to function pointer [Windows x86/x64]
  • Inline Hook [Windows x86/x64]
  • Cross reference [Windows x86/x64]
  • AOB Scanning [Windows x86/x64]
  • Reassembly [Windows x86/x64]
  • Disassembly [Windowx x86/x64 (Zydis)]
  • Foreign process memory operations [Windows x86/x64]

Linux/Mac support WIP.

std-microblock

View profile

View on GitHub
GitHub Stars159
CategoryDevelopment
Updated19h ago
Forks13
std-microblock/blook

Languages

C++

Security Score

100/100

Audited on Mar 31, 2026

No findings