3intermute/linux_syscall_hook external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

3intermute/linux_syscall_hook

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/3intermute/linux_syscall_hook)

Close

3intermute / linux_syscall_hookView on GitHubMore

• External links
• Readme badge

system call hooking on arm64 linux via a variety of methods

☆49Apr 28, 2022Updated 3 years ago

Alternatives and similar repositories for linux_syscall_hook

Users that are interested in linux_syscall_hook are comparing it to the libraries listed below

• 3intermute / arm64_silent_syscall_hook

  View on GitHub
  silent syscall hooking without modifying sys_call_table/handlers via patching exception handler
  ☆152Apr 22, 2024Updated last year
• wszxl516 / syscall_hook

  View on GitHub
  linux x86_64 and arm64 syscall hook
  ☆22Dec 9, 2023Updated 2 years ago
• skyun1314 / auditd_for_android

  View on GitHub
  An approach to utilize auditd under Android 6+
  ☆23Aug 24, 2018Updated 7 years ago
• Ackvincent / Android-Syscall-Logger

  View on GitHub
  Android-Syscall-Logger
  ☆22Feb 28, 2021Updated 4 years ago
• onesss19 / Syscall_intercept_arm64

  View on GitHub
  ☆122Mar 18, 2022Updated 3 years ago
• Ylarod / SignalTracer

  View on GitHub
  A kernel module for tracing signal
  ☆31Jan 17, 2023Updated 3 years ago
• Rhydon1337 / linux-kernel-process-hider

  View on GitHub
  Process hider for Linux systems using a kernel agent
  ☆22Dec 18, 2020Updated 5 years ago
• rev1si0n / android_kernel_oneplus_msm8998

  View on GitHub
  个人专用 ONEPLUS 5 内核，做了一些基础的反调试修改（从 maps 隐藏特定 lib，最完整最正常的 tracerPid 修改措施）
  ☆81Oct 7, 2021Updated 4 years ago
• CDuPlooy / arm64tracer

  View on GitHub
  ☆15Jun 24, 2021Updated 4 years ago
• acceleratorCYR / monitorSVC

  View on GitHub
  monitor svc calls of android
  ☆74Sep 6, 2018Updated 7 years ago
• kiosk404 / openssl_tracer

  View on GitHub
  openssl tracer using eBPF
  ☆16Jan 4, 2026Updated last month
• maoabc / fuckPxxVM

  View on GitHub
  转换Pxx的vmp文件(check.bin, mw.bin)到.class
  ☆28Mar 15, 2023Updated 2 years ago
• 20000s / android_cve

  View on GitHub
  主要记入自己复现过的android cve
  ☆52Feb 28, 2022Updated 3 years ago
• tcc0lin / KernelModification

  View on GitHub
  研究内核改机策略
  ☆69Mar 13, 2024Updated last year
• XhyEax / AndroidGotHook

  View on GitHub
  Simple Android ARM&ARM64 GOT Hook
  ☆37Jun 8, 2022Updated 3 years ago
• WeiJiLab / kernel-inline-hook-framework

  View on GitHub
  hook or replace arbitary linux/FreeBSD kernel functions in runtime, supporting arm32, arm64, x86, x86_64, riscv
  ☆218Updated this week
• reveny / Android-Library-Remap-Hide

  View on GitHub
  Remap a library to avoid detection
  ☆132Feb 1, 2024Updated 2 years ago
• WindySha / jdwp-xposed-injector

  View on GitHub
  This is an injection tool that can inject xposed module to debuggable app by jdwp.
  ☆52Feb 22, 2022Updated 4 years ago
• darvincisec / AntiDebugandMemoryDump

  View on GitHub
  Anti-Debug and Anti-Memory Dump for Android
  ☆282Feb 21, 2021Updated 5 years ago
• stdhu / kernel-inline-hook

  View on GitHub
  linux kernel inline hook
  ☆142Oct 26, 2022Updated 3 years ago
• SsageParuders / Android_SVC_Edu

  View on GitHub
  A Project for people to study android svc.
  ☆25Aug 12, 2022Updated 3 years ago
• axhlzy / FridaDebugger

  View on GitHub
  Single-step debugging of native code using frida, stalker, and semaphore
  ☆87Oct 9, 2024Updated last year
• IIIImmmyyy / MemoryDumpIl2Cpp

  View on GitHub
  this is dump Il2Cpp CS Struct and IDA Script without global-metadta.dat in Runtime
  ☆35Jul 29, 2022Updated 3 years ago
• Ylarod / goron

  View on GitHub
  Android NDK Toolchains with llvm based obfuscator
  ☆17May 14, 2021Updated 4 years ago
• SsageParuders / Android_Kernel_hwBreakPoint

  View on GitHub
  ☆61Apr 1, 2022Updated 3 years ago
• necuil / android_studio_sdk_modify

  View on GitHub
  ☆43Dec 14, 2022Updated 3 years ago
• NetCapture / Aether

  View on GitHub
  网络抓包、网络检测
  ☆40Nov 10, 2025Updated 3 months ago
• havenow / AndroidGameModify

  View on GitHub
  ☆86Dec 15, 2023Updated 2 years ago
• w296488320 / getMacForNetlink

  View on GitHub
  ☆140Dec 28, 2022Updated 3 years ago
• 20000s / android-detector

  View on GitHub
  对于目前主流android逆向工具的检测
  ☆110Sep 6, 2022Updated 3 years ago
• niqiuqiux / AMem

  View on GitHub
  Android Mem
  ☆66Updated this week
• Abbbbbi / UniDa

  View on GitHub
  Android ARM & ARM64 Debugger based on Unicorn and Frida
  ☆60Aug 11, 2022Updated 3 years ago
• Rhydon1337 / linux-kernel-so-injector

  View on GitHub
  Kernel mode to user mode so injection
  ☆93Nov 6, 2020Updated 5 years ago
• niqiuqiux / apatch_kpm_read

  View on GitHub
  apatch kpm 模块通用内核读写内存 linux kernel read only support ARM64（based apatch）
  ☆64Jan 13, 2026Updated last month
• bet4it / qiling

  View on GitHub
  You can run Android Runtime in Qiling
  ☆29Jul 4, 2022Updated 3 years ago
• IamSanjid / linux-process_mem

  View on GitHub
  Simple library to Read and Write Memory of a Linux Process through custom Kernel Module
  ☆53Jun 6, 2020Updated 5 years ago
• wuhx / AppInspect

  View on GitHub
  codeless Android hook (experimental)
  ☆69Jul 27, 2022Updated 3 years ago
• yhnu / op7t

  View on GitHub
  oneplus 7t 自定义内核(for 安卓逆向/外挂分析)
  ☆242Feb 22, 2023Updated 3 years ago
• dayzerosec / IDA-Android-Kernel-Symbolizer

  View on GitHub
  An IDA plugin that allows you to use /proc/kallsyms output to import function and data labels into an extracted Android kernel image.
  ☆70Nov 4, 2019Updated 6 years ago