Skip to content
/ PyHook Public
forked from IlanKalendarov/PyHook

PyHook is an offensive API hooking tool written in python designed to catch various credentials within the API call.

License

BSD-3-Clause license
0 stars 17 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

TrendingTechnology/PyHook

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
Demo
Demo
 
 
LICENSE
LICENSE
 
 
PyHook.py
PyHook.py
 
 
README.md
README.md
 
 

Repository files navigation

PyHook

PyHook is the python implementation of my SharpHook project, It uses various API hooks in order to give us the desired credentials.

PyHook Uses frida to inject it's dependencies into the target process

Supported Processes

Process API Call Description Progress
mstsc CredUnPackAuthenticationBufferW This will hook into mstsc and should give you Username and Password DONE
runas CreateProcessWithLogonW This will hook into runas and should give you Username, Password and the domain name DONE
cmd RtlInitUnicodeStringEx This should hook into cmd and then would be able to filter keywords like: PsExec,password etc.. DONE
MobaXterm CharUpperBuffA This will hook into MobaXterm and should give you credentials for SSH and RDP logins DONE
explorer (UAC Prompt) CredUnPackAuthenticationBufferW This will hook into explorer and should give you Username, Password and the Domain name from the UAC Prompt DONE

Demo

Link my blog post covering this topic: https://ilankalendarov.github.io/posts/offensive-hooking

About

PyHook is an offensive API hooking tool written in python designed to catch various credentials within the API call.

Resources

Readme

License

BSD-3-Clause license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Python 100.0%