3intermute / linux_syscall_hook
system call hooking on arm64 linux via a variety of methods
☆49Updated 2 years ago
Alternatives and similar repositories for linux_syscall_hook:
Users that are interested in linux_syscall_hook are comparing it to the libraries listed below
- silent syscall hooking without modifying sys_call_table/handlers via patching exception handler☆130Updated last year
- tprt ollvm 反混淆 修改 binja il☆39Updated 7 months ago
- A GKI Android kernel driver(ARMv8.3) template compiled by llvm-msvc☆37Updated 11 months ago
- 跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式…☆66Updated last year
- Deobfuscate OLLVM Bogus Control Flow via angr☆63Updated 3 years ago
- In-memory ELF shared library loading☆40Updated 2 years ago
- A rootkit for Android.☆53Updated 10 months ago
- LLVM Obfuscation Pass☆20Updated 4 months ago
- deobfuscation BR☆46Updated last year
- 内核硬件调试器模块,rootkit操作 dump☆34Updated 3 years ago
- Kernel mode to user mode so injection☆89Updated 4 years ago
- 使用 frida stalker 实现的 trace☆27Updated 2 years ago
- Another LLVM-obfuscator based on LLVM-17. A fork of Arkari☆72Updated last year
- 反ida内联汇编花指令☆49Updated last year
- Android Overlay Hijack☆23Updated 7 months ago
- ☆54Updated last week
- deflat plugins for ida pro☆35Updated last year
- 详细说明及演示MMU相关原理及过程(用于理解Linux内核Root Kernelpatch)☆21Updated 10 months ago
- ☆57Updated 3 years ago
- Implementation of sllvm obfuscator☆66Updated 2 years ago
- 本工具用于解决ollvm编译出来的Linux驱动文件,加载进内核会报错“please compile with -fno-common”的问题☆32Updated 4 years ago
- 去除BR混淆 Deobfuscation BR☆74Updated 10 months ago
- ELF static analysis and injection framework that parse, manipulate, patch and camouflage ELF files.☆62Updated last month
- ☆64Updated last year
- A simple android utility for inject so (suport arm, aarch64)☆27Updated last year
- PoC for obfuscating the dynamic symbol table injecting a custom Hash Table to do symbol resolution☆28Updated 4 years ago
- A program to read and modify the memory of other processes.☆17Updated last year
- Injecting into SELinux-protected system service processes under root on Android.☆39Updated last year
- Use lief, keystone and capstone to manually inline hook elf(libil2cpp.so)☆31Updated 9 months ago
- Control Flow Flattening Deobfuscator for Obfuscator-LLVM as a plugin for IDA Pro.☆27Updated last week