Expand description
Manipulation primitives for PE loading, module hiding, syscalls, hooks, and anti-debug
Modulesยง
- antidebug
- Anti-debugging techniques
- hooks
- Hook detection and removal
- inline_
hook - Inline hooking framework
- manual_
map - Manual PE mapping - LoadLibrary bypass
- remote
- Remote process manipulation
- spoof
- Return address and stack frame spoofing for syscalls
- syscall
- Direct and indirect syscall infrastructure
- unlink
- Module unlinking from PEB lists