https://github.com/brosck/apihookingdetector
「⚙️」Detect which native Windows API's (NtAPI) are being hooked
https://github.com/brosck/apihookingdetector
api detect detector extract extractor hooking native native-api nt ntapi windows
Last synced: 9 months ago
JSON representation
「⚙️」Detect which native Windows API's (NtAPI) are being hooked
- Host: GitHub
- URL: https://github.com/brosck/apihookingdetector
- Owner: brosck
- License: mit
- Created: 2023-04-24T22:41:24.000Z (almost 3 years ago)
- Default Branch: main
- Last Pushed: 2024-12-07T01:52:18.000Z (about 1 year ago)
- Last Synced: 2025-04-09T07:02:00.647Z (10 months ago)
- Topics: api, detect, detector, extract, extractor, hooking, native, native-api, nt, ntapi, windows
- Language: C++
- Homepage:
- Size: 98.6 KB
- Stars: 38
- Watchers: 3
- Forks: 8
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# 「⚙️」API Hooking Detector
Detect which native Windows API's (NtAPI) are being hooked
## Usage
```
PS C:> .\Detector.exe output.txt
_ ___ ___ _ _ _ _ ___ _ _
/_\ | _ \_ _| | || |___ ___| |_(_)_ _ __ _ | \ ___| |_ ___ __| |_ ___ _ _
/ _ \| _/| | | __ / _ \/ _ \ / / | ' \/ _` | | |) / -_) _/ -_) _| _/ _ \ '_|
/_/ \_\_| |___| |_||_\___/\___/_\_\_|_||_\__, | |___/\___|\__\___\__|\__\___/_|
|___/
[Coded by MrEmpy]
[v2.0]
[*] NT API being hooked:
=========================================================================================
[+] You are safe, there is no hook in the NT API
=========================================================================================
```