Alternatives and similar repositories for zygote-injection-toolkit

Users that are interested in zygote-injection-toolkit are comparing it to the libraries listed below

• fuqiuluo / android-wuwa
  Android aarch64 kernel rootkit(driver module)
  ☆103Updated last week
• SafaSafari / bypass_libpairipcore
  with this repo you can bypass libpairipcore tamper and signature protection
  ☆45Updated 6 months ago
• JingMatrix / Demo
  A demo app to detect Zygote injections
  ☆96Updated last month
• Mrack / MemDetection
  计算内存中的libc.so，libart.so的crc与文件中的对比检测apk是否处于异常环境。
  ☆75Updated 2 years ago
• axhlzy / ARTHookScripts
  frida runtime resolves smali
  ☆88Updated 5 months ago
• NiTianErXing666 / Small-Trace
  对目标函数进行trace 只适用于 arm64
  ☆104Updated 2 months ago
• reveny / Android-Library-Remap-Hide
  Remap a library to avoid detection
  ☆130Updated last year
• strazzere / elf-dump-fix
  Utils use to dump android ELF from memory and do some fix including the ELF section header rebuilding
  ☆70Updated 2 years ago
• cinit / JvmXposed
  A Xposed-like library for runtime Java method interception in OpenJDK VM.
  ☆76Updated 2 months ago
• ri-char / zygisk-dump-dex
  A zygisk module that hooks `libdexfile.so` to dump dex
  ☆86Updated 10 months ago
• tcc0lin / awsome-magisk
  关于Magisk生态的研究
  ☆154Updated last year
• LLeavesG / Frida-Sigaction-Seccomp
  Frida-Sigaction-Seccomp实现对Android APP系统调用的拦截
  ☆122Updated last year
• null-luo / btrace
  btrace：binder_transaction+eBPF+Golang实现通用的Android APP动态行为追踪工具
  ☆192Updated last year
• apkunpacker / DetectZygisk
  A POC to detect zygisk
  ☆68Updated 5 months ago
• SoyBeanMilkx / feature
  apatch内核模块用于隐藏mountxxx & maps & smaps的指定内容
  ☆60Updated 8 months ago
• SoyBeanMilkx / IO_Redirect
  apatch内核模块 用于文件重定向
  ☆71Updated 7 months ago
• LLeavesG / eBPFDexDumper
  eBPF-Based DexDumper for Android
  ☆261Updated 2 months ago
• 2481849298 / kernel_proc_hack
  ☆34Updated 10 months ago
• GaoYuCan / DexPatcher
  2023 年 羊城杯 ezAndroid dex VMP 恢复工具
  ☆36Updated last year
• xbyl1234 / jni_trace
  android jni trace for arm64 for magisk module!
  ☆84Updated last month
• WorksButNotTested / frida-cshell
  ☆27Updated 4 months ago
• Ylarod / hardware-breakpoint
  Mirror of https://gitee.com/SmartSmallBoy/hardware-breakpoint
  ☆53Updated last year
• reveny / Android-Native-Import-Hide
  A library for hiding and retrieving imports in ELF binaries.
  ☆182Updated 6 months ago
• WindySha / Poros
  This is a dynamic instrumentation tool that can inject xposed module into any appliation on rooted Android devices.
  ☆149Updated 7 months ago
• zhuowei / cheese
  CVE-2025-21479 proof-of-concept, I think
  ☆161Updated 2 months ago
• Ylarod / ddk
  内核驱动开发工具包 (Kernel Driver Development Kit)
  ☆56Updated last week
• eirv / ElfLoader
  Loading ELF in android using pure java / 使用纯 java 在 android 上加载 ELF
  ☆42Updated 10 months ago
• rev1si0n / android_kernel_oneplus_msm8998
  个人专用 ONEPLUS 5 内核，做了一些基础的反调试修改（从 maps 隐藏特定 lib，最完整最正常的 tracerPid 修改措施）
  ☆81Updated 4 years ago
• reveny / Android-JNI-Helper
  A header-only C++ library that makes working with the Java Native Interface (JNI) safer and more convenient.
  ☆93Updated 7 months ago
• michalbednarski / side-strace
  Run `strace` on program that is under another debugger
  ☆18Updated 2 years ago