Alternatives and similar repositories for linux_syscall_hook

Users that are interested in linux_syscall_hook are comparing it to the libraries listed below

• 3intermute / arm64_silent_syscall_hook
  silent syscall hooking without modifying sys_call_table/handlers via patching exception handler
  ☆152Updated last year
• Rhydon1337 / linux-kernel-so-injector
  Kernel mode to user mode so injection
  ☆91Updated 5 years ago
• za233 / IDADeflat
  deflat plugins for ida pro
  ☆45Updated 2 years ago
• maskelihileci / IDA_Ollvm-unflattener
  Control Flow Flattening Deobfuscator for Obfuscator-LLVM as a plugin for IDA Pro.
  ☆90Updated 9 months ago
• 0xjacklove / xflower
  deobfuscation BR
  ☆53Updated last year
• zhuzhu-Top / deobf
  tprt ollvm 反混淆 修改 binja il
  ☆50Updated last year
• cs1ime / AndroidSuperInject
  Injecting into SELinux-protected system service processes under root on Android.
  ☆50Updated last year
• lockedbyte / so_loader
  In-memory ELF shared library loading
  ☆45Updated 3 years ago
• Ylarod / SignalTracer
  A kernel module for tracing signal
  ☆31Updated 3 years ago
• Mrack / kmem
  A rootkit for Android.
  ☆60Updated last year
• Mrack / tracer-rs
  使用 frida stalker 实现的 trace
  ☆29Updated 3 years ago
• nzcv / arm64-mmu
  详细说明及演示MMU相关原理及过程(用于理解Linux内核Root Kernelpatch)
  ☆23Updated last year
• EEEEhex / detx
  deobf tx libtprt's obfuscation
  ☆56Updated last year
• bluesadi / debogus
  Deobfuscate OLLVM Bogus Control Flow via angr
  ☆68Updated 4 years ago
• thinkerMid / anti_IDA
  反ida内联汇编花指令
  ☆54Updated 2 years ago
• ShinoLeah / eHook
  A Simple uprobe Hook Framework
  ☆67Updated 9 months ago
• gmh5225 / android-kernel-driver-template
  A GKI Android kernel driver(ARMv8.3) template compiled by llvm-msvc
  ☆40Updated last year
• hackcatml / frida-watchpoint-tutorial
  Frida's setHardwareWatchpoint tutorial
  ☆63Updated last year
• codetronik / CodeLabyrinth
  LLVM Obfuscation Pass
  ☆24Updated last year
• rednaga / frida-stack
  Getting better stacks and backtraces in Frida
  ☆58Updated last month
• stdhu / kernel-inline-hook
  linux kernel inline hook
  ☆141Updated 3 years ago
• axhlzy / PyAsmPatch
  Use lief, keystone and capstone to manually inline hook elf(libil2cpp.so)
  ☆33Updated last year
• CDuPlooy / arm64tracer
  ☆15Updated 4 years ago
• revercc / ELFinjection
  A simple android utility for inject so （suport arm, aarch64)
  ☆28Updated 2 years ago
• axhlzy / InjectUtils
  A comprehensive plug-in injection toolset
  ☆41Updated 6 months ago
• Ylarod / Buer-Obfuscator
  A WIP Obfuscator based on llvm14
  ☆33Updated 3 years ago
• SsageParuders / Android_Kernel_hwBreakPoint
  ☆60Updated 3 years ago
• cbwang505 / unicorn-whpx
  跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式…
  ☆78Updated 2 years ago
• Rhydon1337 / linux-kernel-process-hider
  Process hider for Linux systems using a kernel agent
  ☆22Updated 5 years ago
• xrw67 / elfloader
  load so file into current memory space and run function
  ☆112Updated 8 years ago