3intermute / linux_syscall_hookLinks
system call hooking on arm64 linux via a variety of methods
☆49Updated 3 years ago
Alternatives and similar repositories for linux_syscall_hook
Users that are interested in linux_syscall_hook are comparing it to the libraries listed below
Sorting:
- silent syscall hooking without modifying sys_call_table/handlers via patching exception handler☆147Updated last year
- Control Flow Flattening Deobfuscator for Obfuscator-LLVM as a plugin for IDA Pro.☆88Updated 8 months ago
- deflat plugins for ida pro☆42Updated 2 years ago
- 内核硬件调试器模块,rootkit操作 dump☆35Updated 3 years ago
- Kernel mode to user mode so injection☆91Updated 5 years ago
- A GKI Android kernel driver(ARMv8.3) template compiled by llvm-msvc☆39Updated last year
- In-memory ELF shared library loading☆45Updated 2 years ago
- Injecting into SELinux-protected system service processes under root on Android.☆50Updated last year
- A WIP Obfuscator based on llvm14☆33Updated 3 years ago
- tprt ollvm 反混淆 修改 binja il☆49Updated last year
- LLVM Obfuscation Pass☆24Updated last year
- Deobfuscate OLLVM Bogus Control Flow via angr☆68Updated 4 years ago
- A rootkit for Android.☆58Updated last year
- deobfuscation BR☆53Updated last year
- Getting better stacks and backtraces in Frida☆56Updated 2 weeks ago
- 跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式…☆77Updated last year
- Implementation of sllvm obfuscator☆66Updated 3 years ago
- Frida's setHardwareWatchpoint tutorial☆62Updated last year
- 使用 frida stalker 实现的 trace☆29Updated 3 years ago
- AndroidDriveSignity is a Python utility designed to bypass driver signature verification in Android kernel(ARMv8.3), facilitating the loa…☆64Updated last year
- 详细说明及演示MMU相关原理及过程(用于理解Linux内核Root Kernelpatch)☆23Updated last year
- ☆71Updated 2 years ago
- linux x86_64 and arm64 syscall hook☆23Updated 2 years ago
- 本工具用于解决ollvm编译出来的Linux驱动文件,加载进内核会报错“please compile with -fno-common”的问题☆38Updated 4 years ago
- linux kernel inline hook☆138Updated 3 years ago
- GitHub Actions to analyse file using IDA☆35Updated last year
- A kernel module for tracing signal☆31Updated 2 years ago
- deobf tx libtprt's obfuscation☆54Updated last year
- A Simple uprobe Hook Framework☆64Updated 8 months ago
- Another LLVM-obfuscator based on LLVM-17. A fork of Arkari☆109Updated last year