An open source approach to display Solar date in MS-Windows XP. (Delphi native source code)

Api (trainer) spy

This repository contains a comprehensive analysis of the PandaBanker malware. The analysis includes examining various techniques employed by the malware such as API Hooking, Process Hijacking, and Memory Dumping. The investigation also involves practical steps using various tools to understand the malware's behavior and persistence mechanisms.

A Patchless Windows API Hooking Library.

Simple DLL injection protect with the idea of hooking the LoadLibrary function and failing it if it is a call for an unauthorized DLL.

Simple API Hook Sample

Sometimes, you need to manipulate low-level functionality (C APIs, etc) from high-level languages (Python). Eg. Force the low-level calls directly to your own Python override functions. This repo will help you do that.

unsafe hacky memory accessor written in go. $ go get -v github.com/nanitefactory/memory

AMSI ScanBuffer Patch with API Hook poc

API hooking example project using Microsoft Detours

dll-hijack based qbittorrent portable plugin

Samples that shows how to use API Hook libraries: Detours, Deviare, MHook, EasyHook to hide files with the "+/*.txt" file name pattern.

Customizable API hook program

Visit https://github.com/0x80000000 for the newer version of this library.

Windows PE files import address table (IAT) hooking

x64/x86 Hooking Library

Examples of basic windows API hooking techniques

Different API Hooking Techniques - Ring3 (Detours, Trampoline, IAT and EAT) for both, x64 and x32 PE files - Since 2014.

Rewrites filepath on file i/o by hooking NtCreateFile, NtOpenFile and NtSetInformationFile.