Windows Detour Hooking in PowerShell
MIT License
Bot releases are visible (Hide)
FunctionDefinitionAst
(${Function:Func-Name}
) for hooks provided to Trace-PSDetourProcess
Full Changelog: https://github.com/jborean93/PSDetour/compare/v0.4.0...v0.4.1
Published by jborean93 about 1 year ago
-FunctionsToDefine
in the hooks being run with Trace-PSDetourProcess
, no need to call $this.State.GetFunction('Name')
to redefine it
$this.State.GetFunction
has been removed and will no longer workTrace-PSDetourProcess
keep the original stacktrace locations for better debuggingFull Changelog: https://github.com/jborean93/PSDetour/compare/v0.3.1...v0.4.0
Published by jborean93 about 1 year ago
Trace-PSDetourProcess
output pipe to avoid multiple threads clobbering the serialized outputFull Changelog: https://github.com/jborean93/PSDetour/compare/v0.3.0...v0.3.1
Published by jborean93 over 1 year ago
Trace-PSDetourProcess
to make it easier to start hooks for auditing in other processes
DetouredModules
property in the hooks $this
variable
New-PSDetourHook
DllName
and MethodName
must be specified with Address
now-AddressIsOffset
to specify -Address
is located at the offset of the -DllName
when loaded in the processFull Changelog: https://github.com/jborean93/PSDetour/compare/v0.2.0...v0.3.0
Published by jborean93 over 1 year ago
Full Changelog: https://github.com/jborean93/PSDetour/compare/v0.1.1...v0.2.0
Published by jborean93 almost 2 years ago
Full Changelog: https://github.com/jborean93/PSDetour/compare/v0.1.0...v0.1.1